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Introduction 



After you've had some experience with Linux, you don't need someone telling you 
to click the Help button for help or drag a file to the Trash icon to delete it. What you 
need is a reference book that shows you powerful commands and options that let 
you take hold of your Linux system, as well as the processes, users, storage media, 
network resources, and system services associated with it. 

SUSE Linux Toolbox provides you with more than 1000 specific command lines to help 
you become a Linux power user. Whether you are a systems administrator or desktop 
user, the book will show you commands to create file systems, troubleshoot networks, 
lock down security and dig out almost anything you care to know about your Linux 
system. 

This book's focus for your Linux command-line journey is openSUSE, the community- 
based Linux distribution sponsored by Novell, Inc. and SUSE Linux Enterprise. Tapping 
into the skills needed to run those systems can help you to work with your own Linux 
systems and to learn what you need as a Linux professional. 



Novell's Bold Move with SUSE 

Novell, Inc., which develops SUSE Linux systems, shook the free and open source soft- 
ware world in 2006 when it entered into a cooperative agreement with Microsoft. That 
agreement promised to protect each of the two companies' customers from patent- 
related lawsuits that could arise from the other company's patent portfolios, while 
threatening to set a precedent for a Microsoft tax on thousands of other installed Linux 
systems in existence today. 

The agreement also brought with it the probability that thousands of SUSE installations 
would make their way into locations that were once exclusively Microsoft shops. Linux 
systems that were once touted as evil, broken, incompatible, "just a toy," or stolen from 
honest commercial software developers is, in one wave of the hand, just fine for the 
Microsoft faithful to use ... as long as they choose Novell's SUSE Linux systems. 

Despite the fact that Microsoft has not contributed code to Linux, the alliance between 
Novell and Microsoft has made only SUSE Linux customers safe from Microsoft's 
lawsuit threats (and only for a limited time). This has angered many free and open 
source software developers to the point where they will no longer have anything to 
do with SUSE. 

With this book, however, we are taking a different approach. 
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Introduction 



The authors of this book will not try to break your operating system, charge you a tax 
for the work we have put into Linux, or even persuade you to not use SUSE. That's not 
how we have ever done business and is not how we are going to start doing it now. 

Instead, we will teach you Linux. For today, we will help you keep your job and even 
thrive in your new Linux environment. If some day SUSE becomes less relevant, yet 
you still need the power and flexibility that the free and open source software move- 
ment affords (which is today reflected best in Linux), you will have the skills you need 
to move forward. 

Make no mistake about it. This is a Linux book for professionals or serious hobbyists. 
Linux is a powerful, network-enabled, multi-user, multitasking operating system. It's 
built from the ground up for security and interoperability. Microsoft's alliance has con- 
ceded that many of its customers need Linux. It's time for you to see how it works as a 
power user. 

In this book, what you will get are the commands you need to master your SUSE 
Linux systems. Most of those skills will translate to other Linux systems as well, so 
you will have the freedom to use those skills with Ubuntu, Fedora, Slackware, Gentoo, 
Red Hat Enterprise Linux, or any other Linux you choose. So, even if your employer 
or software vendor boxes you in contractually to SUSE, it will not box in your mind. 

Your teachers in this endeavor are not a couple of latecomers to this newfound 
Microsoft /Novell Linux religion. Our credentials reflect more than 40 years com- 
bined experience with Linux systems and the Unix systems on which they were 
based. You will learn from those who have used Linux for years and are willing 
to bring you into it, for whatever reason you have been drawn to Linux. 



Who Should Read This Book 

This book is for anyone who wants to access the power of a Linux system as a systems 
administrator or user. You may be a Linux enthusiast, a Linux professional, or possibly 
a computer professional who is increasingly finding the Windows systems in your data 
center supplanted by Linux boxes. 

The bottom line is that you want to find quick and efficient ways of getting openSUSE 
and SUSE Linux Enterprise systems working at peak performance. Those systems may 
be a few desktop systems at work, a file and print server at your school, or a home Web 
server that you're doing just for fun. 

In the best case, you should already have some experience with Linux. However, if you 
are a computer professional with skills managing other types of operating systems, such 
as Windows, you should be able to easily adapt your knowledge to be able to use the 
specific commands we cover in the book. 



XXII 



82928flast.qxd:Toolbox 11/1/07 12:32 PM 



je xxm 



Introduction 



What This Book Covers 

This is not a beginner's Linux book. Before you jump in, it would be best if you have a 
basic working knowledge of what Linux is, how the shell works, and what processes, 
files systems, and network interfaces are. The book will then supplement that knowl- 
edge with information you need to do the following activities: 

□ Get software — SUSE offers the YaST2 Package Manager GUI tool for getting 
software. With tools such as rpm, you'll learn the best ways to search for, down- 
load, install, update, and otherwise manage software from the command line. 

□ Use the shell — Find neat techniques and tips for using the shell. 

□ Play with multimedia — Play and stream multimedia content from your com- 
puter. You can also modify audio and image files, and then convert the content 
of those files to different formats. 

□ Work with files — Use, manipulate, convert, and secure a wide range of file types 
in Linux. 

□ Administer file systems — Access, format, partition, and monitor your file storage 
hardware (hard disks, CD/DVD drives, floppy disks, USB flash drives, and so on). 
Then create, format, and check the file systems that exist on those hardware devices. 

□ Backup and restore data — Use simple commands to gather, archive, and com- 
press your files into efficient backup archives. Then store those archives locally 
or on remote computers. 

□ Work with processes — List running processes in a variety of ways, such as by 
CPU use, processor use, or process ID. Then change running processes to have 
them run in the background or foreground. Send signals to processes to have them 
re-read configuration files, stop and resume processing, or stop completely (abort). 

□ Manage the system — Run commands to check system resources, such as memory 
usage, run levels, boot loaders, and kernel modules. 

□ Monitor networks — Bring wired, wireless, and dial-up network connections up 
and down. Check routing, DNS, and host information. Keep an eye on network 
traffic. 

□ Get network resources — Connect to Linux and Windows remote file systems 
using FTP, NFS and Samba facilities. Use shell-based commands to browse the Web. 

□ Do remote administration — Access and administer other computers using remote 
login (ssh, telnet, and so on), and screen. Learn about remote administration inter- 
faces, such as Webmin, SWAT, and CUPS. 

□ Lock down security — Set up firewalls and system logging to secure your Linux 
systems. 

□ Get reference information — Use the appendices at the end of this book to get 
more information about the shell (such as metacharacters and shell variables) and 
the state of the system (from /proc). 
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Introduction 



Hopefully, if we have done it right, it will be easier to use this book than to Google for 
the command lines or GUI tools you need. 

Once you have mastered many of the features described in this book, you'll have 
gained the following advantages: 

□ Hundreds of commands — By compressing a lot of information into a small space, 
you will have access to hundreds of useful commands, in over 1000 command lines, 
in a handy form to carry with you. 

□ Critical Linux information — This book lists connections to the most critical infor- 
mation on the Web for succeeding with Linux, in general, and SUSE, in particular. 

□ Transferable knowledge — Most of the same commands and options you use in 
SUSE will work exactly the same way on other Linux systems. Different Linux 
distributions, on the other hand, offer different graphical administration tools. 
And even within a particular distribution, graphical tools change more often than 
commands do. 

□ Quick problem solving — By the time others have started up a desktop and 
launched a graphical administration tool, you will have already run a half dozen 
commands and solved the problem. 

□ Enduring value — Many of the commands described in this book were used in 
early Unix systems. So you are gaining tools that reflect the experience of thou- 
sands of computer experts for more than 30 years. 

Because the full documentation for commands used in Linux consists of thousands 
of man pages, info text, and help messages, you will surely want to reach beyond the 
pages of this book from time to time. Luckily, SUSE and other Linux systems include 
helpful information installed on the system itself. Chapter 1 contains descriptions of 
how to access that information that is probably already installed on your SUSE system. 



How This Book Is Structured 

This book is neither a pure reference book (with alphabetically listed components) nor a 
guide (with step-by-step procedures for doing tasks). Instead, the book is organized by 
topics and aimed at including as many useful commands and options as we could fit. 

Chapter 1 starts by giving you a basic understanding of what SUSE is and how it relates 
to other Linux systems, such as openSUSE. Then it describes some of the vast resources 
available to support your experience with this book (such as man pages, info material, 
and help text). Chapter 2 provides a quick overview of installation, and then describes 
useful commands such as rpm for getting and managing your SUSE software. 

Commands that a regular user may find useful in Linux are described in Chapters 3, 
4, 5, and 6. Chapter 3 describes tools for using the shell, Chapter 4 covers commands 
for working with files, and Chapter 5 describes how to manipulate text. Chapter 6 tells 
how to work with music and image files. 
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Starting with Chapter 7, we get into topics relating to system administration. Creating 
and checking file systems are covered in Chapter 7, while commands for doing data 
backups are described in Chapter 8. Chapter 9 describes how to manipulate running 
processes and Chapter 10 describes administrative tools for managing basic compo- 
nents, such as hardware modules, CPU use, and memory use. 

Chapter 11 begins the chapters devoted to managing network resources by describing 
how to set up and work with wired, wireless, and dial-up network interfaces. Chapter 12 
covers text-based commands for web browsing, file transfer, file sharing, chats, and 
e-mail. Tools for doing remote system administration are included in Chapter 13. 

The last chapter (Chapter 14) tells how to lock down security using features such as 
firewalls and logging. After that there are three appendices that provide reference 
information for text editing, shell features (metacharacters and variables), and sys- 
tem settings (from /proc file system). 



What You Need to Use This Book 

While we hope you enjoy the beauty of our prose, this is not meant to be a book you 
curl up with in front of a nice fire with a glass of wine. We expect you will be sitting 
in front of a computer screen trying to connect to a network, fix a file system, or add 
a user. The wine is optional. 

In other words, the book is meant to be a companion as you work on an openSUSE or 
SUSE Linux Enterprise operating system. Depending on their version, those systems 
are available for some or all of the following computer architectures: x86, AMD64, 
Intel64, and IBM POWER (formerly known as PowerPC). If you don't already have 
openSUSE or SUSE Linux Enterprise installed, refer to Chapter 2 for information on 
getting and installing those systems. 

All of the commands in this book have been tested against openSUSE on x86 or x86_64 
architecture. However, because many of these commands have been around for a long 
time (some dating back over 30 years to the original Unix days), most will work exactly 
as described here on SUSE Linux Enterprise systems, regardless of CPU architecture. 

Many of the commands described in this book will work on other Linux and Unix 
systems as well. Because this book focuses on SUSE distributions, descriptions will 
differ from other Linux systems most prominently in the areas of packaging, installa- 
tion, and GUI administration tools. 



Conventions 



To help you get the most from the text and keep track of what's happening, we've 
used a number of conventions throughout the book. In particular, we have created 
styles for showing commands that allow us to fit as many command lines as possible 
in the book. 
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With command examples, computer output (shell prompts and messages) is shown in 
regular monofont text, computer input (the stuff you type) is shown in bold monofont 
text, and a short description (if included) appears in italics. Here is an example: 

$ Is *jpg List all JPEG files in the current directory 

hat . jpg 

dog.jpg 



To save space, output is sometimes truncated (or sometimes skipped altogether). Three 
dots (...) are sometimes used to indicate that additional output was cut. If a command 
is particularly long, backslashes will appear at the end of each line to indicate that input 
is continuing to the next line. Here is an example: 

# oggenc NewSong.wav -o NewSong.ogg \ 

-a Bernstein -G Classical \ 

-d 06/15/1972 -t "Simple Song" \ 

-1 "Bernsteins Mass" \ 
-c info="From Kennedy Center" 

In the example just shown, you can literally type the backslashes to have all that infor- 
mation included in the single command. Or, you can simply put all the information on a 
single line (excluding the backslashes). On SUSE systems, there are different command 
prompts for regular users and the root user. For example: 

chrisghostl : /tmp> SUSE regular user prompt 

hostl:/tmp # SUSE root user prompt 

For clarity, and to save space, throughout the book instead of using the default 
SUSE prompts, we show command prompts that look more like the default bash 
shell prompts: 

$ Indicates a regular user prompt 

# Indicates the root prompt 

As noted, when a dollar sign prompt ($) appears, any user can run the command. 
With a pound sign prompt (#), you probably need to be the root user for the com- 
mand to work. 

Notes and warnings appear as follows: 

NOTE Warnings, notes, and tips are offset and placed in italic like this. 
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As for styles in the text: 

□ We highlight new terms and important words with italics when we introduce them. 

□ We show keyboard combinations like this: Ctrl+a. If the command requires you to 
type an uppercase letter, the combination will show this: Ctrl+Shift+a. 

□ We show file names, URLs, and code within the text like so: 

persistence .properties. 

One final technique we use is to highlight text that describes what an upcoming 
command is meant to do. For example, we may say something like, "use the follow- 
ing command to display the contents of a file." Highlighting descriptions in this way is 
done to provide quick visual cues to the readers, so you can easily scan the page for 
that command you just knew had to be there. 
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Starting with SUSE 



IN THIS CHAPTER 

Find SUSE resources 

Learn quick and 
powerful commands 

Have a handy refer- 
ence to many useful 
utilities 

Work as Linux gurus do 



Whether you use SUSE Linux every day or just 
tweak it once in a while, a book that presents effi- 
cient ways to use, check, fix, secure, and enhance 
your system can be an invaluable resource. 

SUSE Linux Toolbox is that resource. 

SUSE Linux Toolbox is aimed primarily at SUSE 
Linux power users and systems administrators. 
To give you what you need, we tell you how to 
quickly locate and get software, monitor the health 
and security of your systems, and access network 
resources. In short, we cut to the most efficient 
ways of using SUSE. 



Our goal with SUSE Linux Toolbox is to pack a lot of useful information 
for using SUSE Linux into a small package that you can carry around with 
you. To that end, we describe: 

□ Commands — Tons of command line examples to use SUSE in helpful 
and clever ways. 

□ GUI tools — Quick pointers to graphical administration tools to 
configure your system. 

□ Software repositories — Short procedures to find and download 
thousands of applications. 

□ Online resources — Listings of the best locations to find SUSE 
forums, mailing lists, IRC channels, and other online resources. 

□ Local documentation — Tools for gathering more information from 
man pages, doc directories, help commands and other resources on 
your SUSE system. 

Because you're not a beginner with Linux, you won't see a lot of screen- 
shots of windows, icons, and menus. What you will see, however, is the 
quickest path to getting the information you need to use your SUSE Linux 
system to its fullest extent. 

If this sounds useful to you, please read on. 
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About SUSE, Novell, and Linux 

SUSE (pronounced SOO-zuh) is a Linux operating system owned by Novell, Inc. SUSE 
stands for the German phrase Software- und System-Entwicklung (meaning Software 
and System Development). Its roots come from Slackware Linux, and SUSE officially 
became an independent Linux distribution in 1996 when SUSE released its first version: 
4.2. SUSE was, and remains, one of the most popular Linux distributions in Europe. 

In November of 2003, Novell acquired SUSE and put corporate drive behind the project. 
Today SUSE comes in three editions: 

□ SUSE Linux Enterprise Desktop (SLED) became the commercial, subscription- 
based Linux operating system produced by Novell, Inc. The goal was to provide 
an enterprise-ready desktop environment, offering support, training, documenta- 
tion, hardware certification, and other products to support SLED customers. 

□ SUSE Linux Enterprise Server (SLES) is the SUSE Linux Enterprise Server edition, 
which focuses on server use rather than desktop use. 

□ openSUSE, an open source version of SUSE Linux without proprietary software 
or the support options of the enterprise Novell offerings, was launched by Novell 
in 2005. openSUSE is a community-driven operating system that is distributed for 
free (as is) and has become known for its hardware support and stability. 

Comparing SUSE to Other Linux Versions 

Using openSUSE Linux might be the best way to learn Linux if you have an eye toward 
becoming a Linux professional. With its focus on community development, you can be 
assured that you are getting some of the latest open source software available. The skills 
you learn will scale up nicely to the largest enterprise computing environments. 

Besides Novell, Red Hat, Inc. is the other major corporation that is marketing Linux 
distributions in the enterprise market. The Red Hat operating systems follow the 
same basic dual-distribution model, with Red Hat Enterprise Linux (RHEL) as the 
basis of its commercial products and Fedora as its free, community-supported Linux 
system. 

Debian is considered to be a high-quality Linux distribution with a strong commit- 
ment to the ideals of open source software. Many derivative Linux distributions, such 
as the popular Ubuntu Linux and the KNOPPIX live CD, are based on Debian. And 
although Debian is good for use in small business, the project doesn't have the same 
enterprise infrastructure (training, support, documentation, and so on) that is built 
around SUSE Enterprise Linux. 
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Finding SUSE Resources 



The center for information about the SUSE /SLES/ SLED distributions is the Novell web 
site at www. novel 1 . com/linux/. The openSUSE web site at www. opensuse . org/ is 
the official site for the openSUSE project. Particularly useful pages from this site include: 

□ http: //opensuse. org/Welcome_to_openSUSE . org — From the Welcome to 
openSUSE.org page, follow links to documentation, bug reporting, mailing lists, 
IRC chats, and forums. 

□ www.novell .com/linux/ — Links to information for downloading or purchas- 
ing SUSE installation CDs or DVDs are listed here. Links also take you to details 
on upgrading and purchasing Novell SLED/SLES Install media and support. 

□ http : / /opensuse . org/Users_FAQ — This FAQ contains information on where 
to download openSUSE and how to set up additional software repositories. You 
can also find the openSUSE Hardware Compatibility List here. 

□ http: //suse forums .net/ — This is the online forum for the Global SUSE 
Community. You can find a lot of information here about installation issues, hard- 
ware and software help, and tips for working with openSUSE in general. 

openSUSE Community Connections 

If you want to communicate with the openSUSE community, Table 1-1 shows a quick list 
of links to the most useful openSUSE and Novell SLED/SLES communications venues. 



Table 1-1: Online Resources to Connect to the openSUSE Community 



Type 



Sites 



Mailing lists 


http: 


IRC chats 


http: 


Forums 


http: 
http: 
http: 


Communities 


http: 


News 


http: 


Social Networks 


http: 
http: 



//opensuse . org/Communicate/Mailinglists 

//opensuse . org/Communicate/IRC 

//opensuse . org/Communicate/Forums 
//support .novell . com/ forums/ 
//forums . suselinuxsupport .de 

//opensuse -community. org 

/ /news . opensuse . org/ 

/ /opensuse . org/OpenSUSE_Community/Map 
//www. f lickr . com/ groups /opensuse/ 
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openSUSE Software 

Some sites that offer software packages built for openSUSE that are outside the Novell 
project jurisdiction include http: //packman. Iinks21inux. org/ and http : // 
benjiweber . co.uk: 8080/webpin/. Information on how to use these and other 
openSUSE software repositories is contained in Chapter 2. 



Focusing on Linux Commands 



These days, many important tasks in Linux can be done from both graphical interfaces 
and from commands. However, the command line has always been, and still remains, 
the interface of choice for Linux power users. 

Graphical user interfaces (GUIs) are meant to be intuitive. With some computer experi- 
ence, you can probably figure out, for example, how to add a user, change the time and 
date, and configure a sound card from a GUI. For these cases, we'll mention which 
graphical tool you could use for the job. For the following cases, however, you will 
probably need to rely on the command line: 

□ Almost any time something goes wrong — Ask a question at an online forum to 
solve some Linux problem you are having and the help you get will almost always 
come in the form of commands to run. Also, command line tools typically offer 
much more feedback if there is a problem configuring a device or accessing files 
and directories. 

□ Remote systems administration — If you are administering a remote server, you 
may not have graphical tools available. Although remote GUI access (using X appli- 
cations or VNC) and web-based administration tools may be available, they usually 
run more slowly than what you can do from the command line. 

□ Features not supported by GUI — GUI administration tools tend to present the 
most basic ways of performing a task. More complex operations often require 
options that are only available from the command line. 

□ GUI is broken or not installed — If no graphical interface is available, or if the 
installed GUI isn't working properly, you may be forced to work from the com- 
mand line. Broken GUIs can happen for lots of reasons, such as when you use a 
third-party binary-only driver from NVIDIA or ATI and a kernel upgrade makes 
the driver incompatible. 

The bottom line is that to unlock the full power of your Linux system, you must be able 
to use shell commands. Thousands of commands are available for Linux to monitor and 
manage every aspect of your Linux system. 

But whether you are a Linux guru or novice, one challenge looms large. How do you 
remember the most critical commands and options you need, when a command shell 
might only show you this: 
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NOTE Most other versions of Linux, as well as Unix, define the default com- 
mand prompt as a dollar sign, $, (with the root user prompt #). SUSE, however, 
defines the default command prompt as a greater-than sign (>), but follows the 
convention of a pound sign W for the root user. Throughout this book, you'll 
see $ for the shell prompt for commands that can be run as any user (no special 
privilege required). 

You can change your prompt from the default > by using a command like the 
following: 

> export PSl="[\u@\h \w] \\$ " 
[ericf j@Brodgar ~]$ 

This command sets the prompt to your username, @ the current hostname, with 
the current working directory, all in square brackets, followed by a more traditional 
$ prompt. See Chapter 3 to learn how to set this prompt for all shells by placing 
this command inside a bash startup script file. 

SUSE Linux Toolbox is not just another command reference or rehash of man pages. 
Instead, this book presents commands in SUSE Linux by the way you use them. In 
other words, instead of listing commands alphabetically, we group commands for 
working with file systems, connecting to networks, and managing processes in their 
own sections, so you can access commands by what you want to do, not only by how 
they're named. 

Likewise, we won't just give you a listing of every option available for every command. 
Instead, we'll show you working examples of the most important and useful options to 
use with each command. From there, we'll tell you quick ways to find more options, if 
you need them, from man pages, the info facility, and help options. 



Finding Commands 



Some of the commands described in this book may not be installed when you go to run 
them. You might type a command and see a message similar to: 

$ bash sillycommand 

bash: sillycommand: No such file or directory 

There are a few reasons this might happen: 

□ You mistyped the command name. 

□ The command is not in your PATH. 

□ You may need to be root user for the command to be in your PATH. 

□ The command is not installed on your computer. 
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Here are some commands you can run to look for a command you want to use: 

$ type mount Show the first mount command in PATH 

mount is /bin/mount 

$ whereis mount Show binary, source and man pages for mount 

mount : /bin/mount /sbin /mount . nf s /sbin /mount . ntf s-3g /sbin/mount . nf s4 
/usr/share/man/man8/mount . 8 . gz /usr/share/man/man2 /mount . 2 . gz 

$ which umount Find umount anywhere in file system 

/bin/umount 

$ rpm -qal |grep umount Find umount in any installed package 

/usr/ share /man/man2 /umount . 2 .gz 

/usr/ share /man/man2 /umount 2 . 2 .gz 

/bin/umount 

/usr/share/man/man8/umount . 8 .gz 

/sbin/umount . nfs 

/sbin/umount . nf s4 

/usr/share/man/man8/umount .nfs. 8 .gz 

/opt /kde3/ share/ icons /crystalsvg/ scalable /devices /mo_umount. svgz 

/usr / 1 ib/ YaST2 / star tup/ Fir st -Stage /F0 3 -umount 

/usr / share/ YaST2 /clients /pre_umount_f inish. yep 

/usr/ share /YaST2 /clients /umount_f inish. yep 

$ rpm -q --whatprovides tar Find out which package provides the tar command 

tar-1. 17-21 

If the command you want is in a package that isn't installed, you can install the package 
using either a shell or GUI: 

□ Installing from a shell — Type yast at the command line to see a screen-oriented 
YaST2 Control Center. Then follow the text menus to Software O Software Manage- 
ment O Search and search for the package you want. Highlight the package and 
then click Accept. You can use the Tab key to navigate to the Accept button. (The 
zypper command, described in Chapter 2, is another tool you can use to install 
SUSE software packages from the command line.) 

□ Installing from a GUI — Choose Install Software from the Computer section of 
the SUSE green creature menu. This launches the graphical version of YaST2. You 
will need to enter the root password to run this application. 

Command Reference Information in SUSE 

Original Linux and Unix documentation was all done on manual pages, generally 
referred to as man pages. A slightly more sophisticated documentation effort came a 
bit later with the info facility. Within each command itself, help messages are almost 
always available. 
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This reference information is component oriented — in other words, there are sepa- 
rate man pages for nearly every command, file format, system call, device, and 
other component of a Linux system. Documentation more closely aligned to whole 
software packages is typically stored in a subdirectory of the /usr/ share/doc 
directory. 

All three reference features — man pages, info documents, and help messages — are 
available in SUSE and openSUSE. 

Using help Messages 

The -h or --help options are often used to display help messages for a command. The 
following example illustrates how to display help for the Is command: 

$ Is --help I less 

Usage: Is [OPTION]... [FILE]... 

List information about the FILES (the current directory by default) . 

Sort entries alphabetically if none of -cftuSUX nor --sort. 

Mandatory arguments to long options are mandatory for short options, 
-a, --all do not hide entries starting with . 

-A, --almost-all do not list implied . and . . 

The preceding output shows how the 1 s command line is used and lists available 
options. Piping the output to the less command lets you page through it. You can 
format the help messages into a reference card using the card command. For example: 

$ card Is --output=/tmp/ls.ps 
$ lpr ls.ps 

The result shown here is a file named ls.ps that you can open in a PostScript docu- 
ment reader (such as gs) to view the card. (Select View O Rotate Right to view the 
card properly.) You can use the lpr command to print the card or, if you don't use 
the --output option, it is sent to your default printer automatically. 

Using man Pages 

Suppose you want to find man pages for commands related to a certain word. Use the apropos 
command to search the man page database. This shows man pages that have crontab 
in the man page NAME line: 

$ apropos crontab 

Config: : Crontab (3pm) - Read/Write Vixie compatible crontab(5) files 

crontab (1) - maintain crontab files for individual users (ISC Cron 

V4.1) 

crontab (Ip) - schedule periodic background work 

crontab (5) - tables for driving cron (ISC Cron V4.1) 
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The apropos output here shows each man page NAME line that contains crontab. The 
number shows the man page section in which the man page appears. (We discuss sec- 
tions shortly.) 

The what is command is a way to show NAME lines alone for commands that contain 
the word you enter: 



$ whatis cat 

cat (1) 
cat (lp) 



concatenate files and print on the standard output 
concatenate and print files 



The easiest way to display the man page for a term is with the man command and the com- 
mand name. For example: 

$ man find 

FIND(l) FIND(l) 

NAME 

find - search for files in a directory hierarchy 

SYNOPSIS 

find [-H] [-L] [-P] [path...] [expression] 



The preceding command displays the first man page found for the find command. As 
you saw in the earlier example, some terms have multiple man pages. For example, 
there is a man page for the crontab command and one for the crontab files. Man pages 
are organized into sections, as shown in Table 1-2. 



Table 1-2: man Page Sections 



Section 


Description 





Header files (usually found in /usr/ include) 


1 


Executable programs or shell commands 


2 


System calls 


3 


Library calls 


4 


Special files 


5 


File formats and conventions 


6 


Games 


7 


Miscellaneous 


8 


System administration commands 


9 


Kernel routines [Non standard] 



8 
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The following code shows some other examples of useful options with the man 
command. 



$ man mount -a 

$ man 5 crontab 

$ man mount -P more 

$ man -f mount 

$ man -k mount 



Shows all man pages related to component 
Shows section 5 man page for component 
Use more, not less to page through 
Same as the whatis command 
Same as the apropos command 



Man pages are also available on the Internet. A nicely organized reference site is 

http : / / 1 inuxmanpages . com. 

Using info Documents 

In some cases, developers have put more complete descriptions of commands, file 
formats, devices, or other Linux components in the info database. You can enter 
the info database by simply typing the info command or by opening a particular 
component: 

$ info Is 

The previous command shows information on the Is command. Use up, down, left 
and right arrows and Page Up and Page Down to move around the screen. Home and 
End keys go to the beginning and end of a node, respectively. Once you are displaying 
the info screen, you can get around using the keystrokes shown in Table 1-3. 



Table 1-3: Moving through the info Screen 



Keystroke 


Movement 


? 


Display the basic commands to use in info windows. 


Shift+1 


Go back to the previous node you were viewing. 


n, p, u 


Go to the node that is next, previous, or up, respectively. 


Tab 


Go to the next hyperlink that is in this node. 


Enter 


Go to the hyperlink that is under the cursor. 


Shift+r 


Follow a cross reference. 


Shift+q or q 


Quit and exit from info. 



Software packages that have particularly extensive text available in the info database 
include gimp, festival, libc, automake, zsh, sed, tar, and bash. Files used by the info 
database are stored in the /usr/ share/ info directory. 
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Summary 



While you certainly can read this book from cover-to-cover if you like, the book is 
designed to be a reference to hundreds of features in SUSE Linux that are most useful 
to power users and systems administrators. Because information is organized by topic, 
instead of alphabetically, you don't have to know the commands in advance to find 
what you need to get the job done. 

Most of the features described in this book will work equally well in openSUSE, SUSE 
Linux Enterprise, and other SUSE-based Linux systems. In fact, many of the commands 
described here are in such widespread use that you could use them exactly as described 
here on most Linux and Unix systems. 

The next chapter describes how to get and install SUSE Linux software. 
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Installing openSUSE 
and Adding Software 



Critical tools for initially installing openSUSE, 
and for adding and managing software later, 
include the rpm utility (install /manage local 
packages), the YaST utility (install/manage 
packages from online repositories), and zypper, 
a relatively recent command line tool for manag- 
ing packages. 

This chapter highlights critical issues you need to 
know during initial installation of openSUSE. It 
covers information about online software reposi- 
tories for an array of software tools and shows 
how to set them up for different circumstances. 
The chapter then gives examples of commands 
for installing and managing software after initial 
installation, including the rpm, yast, and zypper 
commands. 



IN THIS CHAPTER 

Installing openSUSE 

Working with software 
repositories 

Getting software 
packages with YaST 

Managing software 
packages with RPM 
and zypper 

Extracting files 
from RPMs 



Installing openSUSE 



For initial installation of openSUSE, you can get an official openSUSE DVD, 
or set of CDs, from the openSUSE website (http : / / software . opensuse 
.org/), or a software mirror near you (http: //en. opensuse. org/ 
Mirrors_Released_Version). 

Media available for the different openSUSE releases include: 

□ Basic installation — For openSUSE 10.3, there is a single DVD or a set 
of CDs that represent the entire distribution. You can add more pack- 
ages from several online repositories to gain functionality or enhance 
openSUSE with great open source tools. 

□ Additional software — openSUSE 10.3 has two other companion CDs 
you can download. One CD is a compilation of non-open source soft- 
ware; the second is a language pack CD for multinational support. 
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Choose the set of media that best suits your need. Then use online repositories to down- 
load and install other packages you need. 

The openSUSE media are available with books that cover openSUSE, such as Linux 
Bible 2007 Edition (Wiley, 2007), or by downloading media from the openSUSE web- 
site (www. opensuse. org). Get media for Novell SLES/SLED from www. no veil . com 
(select Downloads). Subscription fees may apply for Novell SLED/SLES products. 

Preparing to Install 

If you are going to erase everything on your computer's hard disk and install openSUSE, 
you don't have to make preparations for your install in advance. If you want to keep any 
data from your hard disk, back up that data before proceeding. To keep existing data on 
your hard disk and add openSUSE, you may need to resize existing disk partitions and 
repartition your disk. See Chapter 7 for information on disk resizing and partitioning 
commands. 

Choosing Installation Options 

All SUSE-based Linux distributions use the YaST (Yet Another Setup Tool) installer to 
initially install the system. This is also the name of the tool you run, after initial instal- 
lation, to modify other system settings. YaST can run in text-based or GUI mode. 

Start the Install Process 

Begin the install process by booting from the DVD or first CD in the install set. As an 
alternative, if you need to boot from install floppies or a USB key, refer to the README file 
in the boot/i386/ directory of CD #1, or visit the "Installation without CD" section on 
the openSUSE website (http: //en. opensuse .org/Installation_without_CD). 
Choose one of the following methods to begin the installation process: 

□ CD or DVD — Insert the DVD or first CD in the set and reboot the computer. You 
can also boot right from the hard disk if you've accidentally left the CD in after 
rebooting. 

□ Minimal CD boot image — Locate the appropriate mini . iso (for example SUSE- 
Linux-10 . l-Remastered-i3 86-mini . iso) image from the iso directory of the 
openSUSE download mirrors (ftp: //mirror . Colorado .edu/pub/ opensuse/ 
distribution/SL-10.1/iso/). Burn mini . iso to a CD. This CD lets you start 
the install from the CD, but continue from some other medium (such as an online 
software repository) after starting. This is useful when you're doing a quick instal- 
lation and don't have the full media with you. 

□ USB flash drive — Review the instructions at http : / /en . opensuse . org/ 
Installation_without_CD and http: / /en. opensuse . org/SuSE_install_ 
f rom_USB_drive to ensure you get a proper installation. 
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Choose an Installation Method 

Each of the methods just described should result in an openSUSE installer boot screen 
appearing. Here are your choices on how to proceed from the boot screen: 

□ Graphical install — With a CD or DVD graphical install, use the down arrow keys 
to move to the Installation item. You can use function keys to modify the instal- 
lation: press F2 to change the language, F3 to change the video mode, F5 to change 
some kernel options, or F6 to install a special driver needed for your hardware. 
Press F4 to change where you get the software packages used for installation from 
the CD/DVD to another location. Your choices are either hard disk or an online 
repository (available via FTP, HTTP, NFS, or SMB/CIFS protocols). 

NOTE For information on available install methods see the openSUSE website 
under the Installation section fhttp: //en.opensuse. org/ installation). 
Special vnc and ssh install options, are available from the boot prompt, as 
described later. 

If you don't need any additional boot options, press Enter to continue with a 
graphical install from the selected media. You can skip from here right to the 
"Answering Installation Questions" section. 

□ Boot prompt install — To have the install proceed from a simple boot prompt, press 
the Esc key from the boot screen and select OK from the pop-up that appears. Once 
at the boot prompt, you can add boot options to do special things, such as installing 
using ssh or vnc. Continue to the next section for information on boot options. 

Add Boot Prompt Options 

If you choose to bypass the menu on the boot screen and start your install from a simple 
boot prompt, there are a lot of options you can enter to direct how installation proceeds. 
Here are examples of some handy install types you can request from the boot prompt after press- 
ing the Esc key: 

start the install normally 
installer starts ssh server 
installer starts a vnc server 

WARNING! Note that the vnc=l method may pass your install information over 
the network in clear text, such as the root password. You may want to consider 
using the ssh option whenever possible. 

If you run the install in text mode (if your graphical screens are garbled), you will be work- 
ing in the YaST text mode tool. If you run a VNC install, using the vnc=l parameter, you can 
step through the graphical section of the install remotely by connecting a VNC client to 
the IP of the install machine. The installer will show the IP address to connect to when it 
starts the VNC server. If you want to run an SSH install, the ssh=l parameter will launch 
an SSH server on the installer, which you can connect to using the ssh -X parameter. 
The installer will show you the SSH connection instructions on the screen. 
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You also have the choice of going into modes other than installation mode. For example: 



boot: linux rescue 
boot: memtest 



boot rescue mode (log in as root) 
starts the Memtest86+ program 



The rescue option starts a mini-Linux system in rescue mode, so you can mount file 
systems and fix problems from the command line. The memtest option will start up 
the Memtest86+ program (www . memtest . org/) to test your system memory for errors. 

NOTE If you are familiar with the Red Hat Linux kickstart utility, openSUSE 
offers the AutoYaST tool that can be used in a similar way. To learn more about 
AutoYaST, refer to the openSUSE website (http : / /en . opensuse . org/YaST_ 
Auto installation). 

Most boot options you add to existing install types are meant to help work around problems 
that might occur during installation. In particular, you might need to disable certain 
hardware components or features that aren't properly configured and enabled during 
installation (notice the Install menu offers some APIC options). From the boot prompt, 
type linux, followed by one or more of the boot options shown in Table 2-1, to deal 
with common problems. 

NOTE To find out more about these and other boot options, visit the Linux 
BootPrompt-HowTo (www. faqs.org/docs/Linux-HOWTO/BootPrompt- 
HOWTO.html) and the Linux kernel-parameters . txt file which can be 
found online or in the kernel source tree under Documentation/kernel- 
parameters . txt. 



Table 2-1: Boot Options When Installing openSUSE 



Problem 


Description 


Boot Options to Try 


Failures reading 


Some CD/DVD drives 


ide=nodma nodma acpi=off 


CD /DVD drive. 


don't properly support 
DMA or some power 
management features. 


all-generic-ide irqpoll 


Hardware improperly 


Tell the boot process to 


noprobe 


probed. 


not probe hardware. 




System hangs trying to 


Disable hardware or 


nousb nopcmcia nofirewire 


enable some hardware. 


service that is causing 
the system to hang. 


noapic nolapic pci=nomsi 


Your computer has 


You can run the install 


console=/dev/ ttyO 


a serial console, but 


in text mode from the 




no regular monitor. 


serial terminal. Use 
ttyO for the first virtual 
console, or t ty S for 
the first serial port. 
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Table 2-1: Boot Options When Installing openSUSE (continued) 



Problem 


Description 


Boot Options to Try 


Video is garbled or 
hangs. 


Try to set the resolution 
yourself or skip monitor 
probing. 


vga=788 

vga=ask 

See the vesaf b . txt file in the 

kernel documentation for other 

video modes. 


RAM is improperly 
detected. 


Tell the kernel how 
much RAM to use. 


mem=2 5 6M 



Answering Installation Questions 

Most of the screens you see during installation are quite intuitive. Table 2-2 offers a 
quick review of those screens, along with tips where you might need some help. 



Table 2-2: openSUSE Installation Screens 



Screen 



Description 



Tips 



Language 



Choose the install language. 



Media Check 



Check each CD/DVD image 
against an md5sum implanted 
on that image. 



License Agreement Novell software agreement. 



Installation Mode Update or install mode. 



If you need support for additional 
languages, add them later. You 
may not see this option until later, 
depending on which DVD or CD 
you install from. 

On occasion, a media check will fail 
with good media on a drive that 
doesn't support DMA. If the check 
fails, start the installer with ide= 
nodma and check again. If the 
media passes, you can continue. 

You must accept the license to 
install the openSUSE operating 
system. 

Update an existing openSUSE 
installation, or install a new one. 
You can also specify whether to 
use online repositories for SUSE 
packages. You will also need to 
configure a network connection. 



Continued 
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Table 2-2: openSUSE Installation Screens (continued) 



Screen 


Description 


Tips 


Clock and 


Configure the time. 


Set the date and time zone for 


Time Zone 




your system. Note that the 
default for the clock setting is 
Universal Coordinated Time. 
Usually this is a server feature. 


Desktop Selection 


What type of desktop to run. 


Choose the GNOME or KDE desk- 
top to install to the system. Other 
options may include text mode 
only or a minimal X Window 
server for light resources. Note 
that if you are installing from a 
SUSE GNOME or KDE disk, your 
choice is already made. 


Installation Settings 


Review install options. 


Change any install options, such 
as partitioning, here and review 
prior to continuing. 


Package 


Begin the installation. 


The system is now being initial- 


Installation 




ized and installed with the set- 
tings chosen. 


Password for 


Set the password for the 


Make it difficult to guess. Don't 


the System 


root user. 


share it. 


Administrator 






Hostname and 


Set the host and domain. 


Select a hostname for the system 


Domain Name 




and optionally a domain name. 
You can also have openSUSE 
obtain its domain name from 
DHCP to take care of problems 
with dynamic DNS. 


Network 


Set up networking options. 


Set up options for the network, the 


Configuration 




openSUSE firewall, and others like 
VNC administration and proxy 
servers. 


Test Internet 


Test if the Internet connection 


Here you can test if your network 


Connection 


is activated. 


connection was set up successfully 
and optionally download all the 
latest updates. 
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Table 2-2: openSUSE Installation Screens (continued) 



Screen 


Description 


Tips 


Novell 


Register with Novell 


Send Novell your system informa- 


Customer Center 




tion and register contract infor- 


Configuration 




mation if you've purchased any 
contracts. 


Additional 


Configure software add-ons. 


Configure extra software reposito- 


Installation Sources 




ries, possibly containing software 
packages that cannot be distributed 
with the openSUSE distribution. 


User 


Set up how user passwords 


Choose between local, LDAP, 


Authentication 


and logins are checked. 


NIS, and Windows Domain 


Method 




authentication. 


(Authentication 


Various screens for filling in 


The screens you see here will 


setup) 


authentication information. 


depend on how you answered the 
previous question. You will need 
LDAP, NIS, WindBind, or Local 
user credential info to fill in. 


Writing the System 


Applying settings to the system. 


YaST will generate linker cache, 


Configuration 




and apply other settings you've 
chosen, to finalize the install. 


Release Notes 


Notes about this version. 


Last minute details about 
openSUSE are presented. 


Hardware 


Set up system hardware. 


YaST sets up hardware devices 


Configuration 




such as video cards, sound cards, 
and printers. 


Installation 


Installation has finished. 


YaST has finished installing the 


Complete 




system. You have an option to 
clone all settings used for this 
install, to use with Auto YaST. 



NOTE When setting up partitioning, YaST defaults to create a single large root par- 
tition and a swap partition. This simple partitioning scheme is sufficient for most 
users. However, it has been considered good practice to locate some of the dynamic 
directories such as I var , /home, / tmp, and possibly /usr on separate file systems. 
One reason for this is that message logs writing to the /var directory can fill up the 
root partition, possibly preventing you from logging in. The I tmp and /home direc- 
tories are usually separated for the same reasons (on multiuser systems especially). If 
these directories are located on separate partitions, the problems are contained on file 
systems other than the one root needs to use to log in and fix things. With /home on 
a separate partition, you also have the added benefit of leaving it unharmed when you 
want to reinstall Linux. If /home is part of the I partition, it will be erased. 
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If errors occur in installation, press Ctrl+Alt+Fl through F8 to get to virtual termi- 
nals containing useful information. Ctrl+Alt+F2 takes you to a console prompt; 
Ctrl+Alt+F3 displays the installation dialog box; Ctrl+Alt+F4 displays the message 
logs; Ctrl+Alt+F5 and F6 are console prompts; Ctrl+Alt+F7 is the YaST installer; and 
Ctrl+Alt+F8 displays messages sent from the X server. 



Working with Software Packages 

Software delivered particularly for SUSE systems is packaged in what are called RPM 
packages. An RPM package ( . rpm extension) contains not only the software you want 
to install, as a compressed archive, but it can also hold lots of information about the 
contents of the package. That information can include software descriptions, depend- 
encies, computer architecture, vendor, size, licensing, and other information. RPMs 
may include installation scripts. 

Once a basic openSUSE system is installed, you can add, remove, and otherwise 
manage openSUSE packages to suit how you use that system. OpenSUSE and 
SLED/SLES use RPM Package Manager (RPM) to create and manage software for 
those systems. This packaging tool is also used on other Linux systems, including 
Fedora, Red Hat Enterprise Linux, and Mandriva. 

A grand plethora of software management tools are available for your openSUSE/ 
SLED/SLES Linux system, including RPM, YaST, smart, APT, yum, zypper, and 
ZENworks, to name just a few. Historically, SUSE Linux systems have relied on YaST 
and RPM to get the package management job done. This chapter covers three package 
management utilities to give you resources for software management in SUSE Linux: 

□ YaST — Use YaST, a text-based interface (YaST also provides a graphical interface), 
to download and install packages from online repositories. The yast command 
is preferred over rpm for installing packages in most cases because yast will get 
dependent packages needed by those packages you request to install. Also, by get- 
ting packages from official repositories, you are most likely to get the latest avail- 
able packages. 

□ Zypper — The zypper command provides an easy command-line tool for manag- 
ing packages. Use zypper to add repositories (Software Catalogs in YaST) as well 
as search for and display information about available software packages, patches, 
and updates. As with YaST, zypper will automatically resolve software package 
dependencies, so you do not have to hunt around for every package needed to 
install a single piece of software. Note, however, that Novell does not recommend 
mixing zypper with an environment managed by Novell ZENworks, since zypper 
does not use the ZENworks zmd database. For more information on Zypper 
integration, visit the openSUSE web site (http: //en. opensuse.org/Zypper/ 
Us age # About). 
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□ RPM — Use the rpm command to install RPM packages available from your local 
system (hard disk or CD/DVD) and otherwise manage installed packages (remove, 
query, and so on). There is some functionality built in to RPM to download and 
install individual packages from FTP and web servers, however this is mostly for 
convenience in contrast to downloading and installing the package in two steps. 
Related local commands and options are available for verifying software packages 
and repairing your local RPM database, if problems should occur. 

Some software packages that work with openSUSE, but may not be included on CDs, 
DVDs, or in SUSE repositories for legal or other reasons, are available from third-party 
software repositories. The following sections deal with using software from repositories 
located around the world. Because there may be very different laws and regulations in 
some countries, you should check your local laws to determine the legal implications of 
using packages from third-party repositories. 



Getting Software Packages with YaST 

The standard SUSE Linux administration utility is the YaST Control Center. YaST has 
both a text-based flavor and a graphical version. The menu selections are the same in 
either utility. If you are running a server, or low-resource installation, you will most 
likely encounter the command line text interface more frequently than the GUI. It is 
common for administrators to leave out the graphical libraries and desktop features 
when striving for an environment with a minimal maintenance and software foot- 
print. This leaves a lean system with a minimized potential for software problems. 

To start the YaST Control Center simply type yast (using sudo or as root) at the com- 
mand line. A blue-themed interface will appear, showing two menus. You can toggle 
focus to the menus by pressing Tab, and then use the arrow keys to navigate the high- 
lighted selection bar over the menu items. When you have your selection highlighted, 
press Enter to proceed with that selection. You can also use the Fl key to bring up some 
information on navigating the YaST text interface. 

The menu list on the left is a group of administrative areas and modules of the YaST 
environment. Table 2-3 describes the YaST modules available for configuration. 



Table 2-3: YaST Control Center 



Configuration 


Item 


Description 


Software 




Manage packages, updates, installation sources, and install patch 
CDs. 


Hardware 




Configure video and sound cards, printers, hard disks, and all 
hardware connected to the system. 



Continued 
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Table 2-3: YaST Control Center (continued) 




Configuration Item 


Description 




System 


Set up kernel tuning, configure the boot loader, manage disk parti- 
tions, add system services, and other settings. 




Network Devices 


Handle network and modem setup, as well as IP address configu- 
ration (with DHCP or static addresses). 




Network Services 


Client and server network service configuration for setting up NFS, 
LDAP, DNS, Samba, and other services. 




Novell AppArmor 


Configure access control for software applications to minimize or 
eliminate threats caused by software vulnerabilities. 




Security and Users 


Set up your firewall, users, groups, and sudo configurations. 




Miscellaneous 


View system logs, browse through release notes, configure 
Auto YaST, or post a support query. 



The next section focuses on the Software area of YaST for managing system software. 



Adding and Updating Software with YaST 

The Software area of YaST lists several items for maintaining software on your SUSE 
Linux system. These items fall under two basic categories: working with software from 
online servers and working with software from local directories, CD-ROM, or other 
disks on your system. You can also verify Installation and Patch CDs from this area. 
The following sections describe the available menu items. 

NOTE You can use some shortcuts to get to different YaST modules. Entering 
yast -1 will show a list of modules you can enter at the command line without 
navigating the YaST dialog menus. For instance, entering yast sudo at the 
command line takes you right to the YaST Sudo Configuration module. 

Online Update 

When you select Online Update, YaST automatically begins synchronizing your sys- 
tem with the latest list of patches available from the Novell update sources. You are 
then taken to a patch list and summary view where you can select which patches you want 
to install or apply to your existing system. 

Once you are in the patch module, patches can be segregated into different groups by 
tabbing to the Filter item at the top left corner and pressing Enter to activate the pull- 
down menu. Select whether you want to view patches grouped into categories such 
as New, Recommended, or Security related. You can also select the Search item from 
the pull-down menu to search for a specific patch. 
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Software Management 

The Software Management module is the primary YaST module for adding, removing, 
searching, and getting information about software packages. From this module you can quickly 
search for packages and view descriptions from a summary list about which packages 
offer which functionality. 

Page or arrow through the software packages, then select Actions to add or delete packages 
as you choose. Dependencies for each package are automatically resolved upon selec- 
tion. When you have made all your selections, Tab to the Accept item in the lower right 
corner and press Enter. 

Much like the Online Update module, a filter is available to limit the software summary view 
by different criteria such as functionality groups (Office or Game software for instance), 
or only installed packages. To search for packages, use the Filter menu and select Search. 
For example, if you enter the word magick, the filter will return all the packages it knows 
about which have the word magick in them (such as the ImageMagick graphics conver- 
sion utility). 

Once a list of packages is displayed, you can act on the list of packages by selecting the 
Actions item, then the All Listed Packages menu. From there, you can choose to install 
all packages, delete them, or update them. Packages to be installed or deleted are 
tagged in the summary window with a + (install) or - (delete) status flag, respectively. 
Selecting Accept and pressing Enter completes the tasks. Table 2-4 shows other status 
flags you may select from the Actions menu. 



Table 2-4: YaST Control Center Status Flags 



Status Flag Description 



The package on this line will be added to the system. 

This package was automatically selected by YaST to be added (dependency). 

This package has been selected for update (already installed). 

This package is selected for automatic updating. 

The package is already installed. 

The package will be removed from the system. 

Three dashes show this package should never be installed (taboo). 

The package should never be updated or deleted. Keep the installed version 
indefinitely. 
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Add-On Product 

The Add-On Product module is used for installing drivers or applications available from product 
vendors or third parties. From the Add-On Product module, you can select several different 
media types to install from, including FTP, HTTPS protocols, and CD or DVD. The SLP 
(Service Location Protocol) method, used by devices such as a YOU server to announce 
itself on the network, is also available. 

Automatic Online Update 

The Automatic Online Update module enables you to configure when your SUSE system obtains 
automatic updates. You can set the time and day to download and apply the updates. 
Daily and Weekly update intervals are available, as well as the ability to skip patches 
which may require administrative input (such as accepting a license agreement prior 
to installation). 

Community Repositories 

You can configure where your SUSE system obtains software from using the Community Reposi- 
tories module. By default, OSS and NON-OSS are the only repositories enabled. You 
can enable the main update repository here as well as the popular Packman repository 
and many others (scroll through the list to see more). The Videolan repository is for 
the VLC media player, which plays a wide variety of media formats, including DVD 
media. Other repositories that you might add at a later date include the NVIDIA 
repository with drivers for NVIDIA graphics cards, and the openSUSE BuildService 
repository. 

Installation into Directory 

The Installation into Directory module enables you to install additional SUSE Linux file sys- 
tems into a directory or create a tar file out of a file system. Using this method, you could use 
an offline file system as a test bed, or as an exported file system for a thin client or 
embedded device that could download its file system over NFS at boot time. 

Media Check 

If you have downloaded an ISO image and burned it to a disk, or if you want to check 
the readability of any of your DVD or CD-ROM media, you can do a read-test of that media 
using this YaST module. 

Online Update Configuration 

This YaST module enables you to configure support options and product updates from Novell. (Note 
that Novell registration now requires you to use a web browser to complete the process, 
so you will not be able to do this from within the curses-based YaST tool.) 

Patch CD Update 

If you have a Novell Patch CD (or a custom-made one), you can use this YaST module 
to install the patches from that disk. You can also make your own Patch CD to distribute 
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among multiple machines, and use YaST to apply your own patches. For more infor- 
mation on creating your own Patch CD, visit the openSUSE website (http : / / en 

. opensuse . org/SDB : How_To_Create_a_Patch_CD). 

Software Repositories 

You can add other repositories quite easily with YaST. The openSUSE web site (http ://en 
. opensuse . org/YaST_package_repository) offers links to several repositories 
you may find useful. If you wanted to add Guru's RPM site you could do so like this: 

1. Select the Software Repositories module from the YaST Control Center main menu 
and press Enter. 

2. On the Configured Software Repositories screen, select the Add menu item at the 
bottom and press Enter. 

3. The Media Type screen appears. Select HTTP and press Enter. You can optionally 
configure YaST to download the repository descriptions when setting up the reposi- 
tory now, or it will do so later when you use the repository for the first time. Uncheck 
Download repository description files if you do not want to do the download at this 
time. Select Next and press Enter. 

4. The next screen shows the Server and Directory menu. In the Repository Name, 
enter Guru ' s RPM site. For Protocol, select HTTP and then enter ftp . gwdg . de 
for the Server Name. Under Directory on Server, enter /pub/ 1 inux/mi sc / suser- 
guru/rpm/10 . 3/RPMS/ and leave the Port field empty. For Authentication, you 
can leave Anonymous checked. Select Next and press Enter. You will be returned 
to the Configured Software Repositories menu where you should now see Guru's 
RPM site enabled and ready for business. 

5. Select Finish and press Enter. You should be prompted to accept the digital signing 
key for the repository you just entered. There is a warning given here that states 

There is no trust relationship to the owner of the key, and further 
down says it is safest to skip it. 

It is generally good practice to import keys to validate any software you install. How- 
ever, the YaST developers suggest it is "safest to skip" importing a key if you have 
reason to question its authenticity. You will have to decide where your comfort level 
is. To learn about other ways to verify RPM GPG keys, visit the GNU GPG home page 

at www.gnupg. org/. 



Using zypper to Manage Software 

Historically, SUSE Linux distributions relied, by default, on the RPM and YaST 
utilities for managing software. Much of this picture has been changing starting with 
the 10.1 version of openSUSE. Utilities implementing Libzypp have emerged, with 
a utility called zypper being the focus for much of the command line package man- 
agement needs. 
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The zypper utility is designed to be compatible with the Novell Rug (Red Carpet 
updater) and ZENworks software management systems, but does not require the 
ZLM daemon to be running in order to operate. Furthermore, zypper does not use 
the ZENworks zmd database, so Novell recommends you not use zypper with ZEN- 
works. This leaves a lighter footprint on system resources as well as fewer require- 
ments for managing your software. 

Zypper can be used to search for, install, remove, and update software packages as 
well as manage installation sources called repositories. Zypper offers a powerful way 
of managing software, much the same as APT for Debian and the Yum utility found 
on Fedora and Red Hat Linux systems. What follows are some useful ways of manag- 
ing software on openSUSE using the zypper utility. 

Working with zypper Repositories 

When you define a repository, zypper holds a configuration that tells zypper where to 
find software to work with. If you have configured software locations in YaST, zypper 
will use them as well as other installation sources you may have configured through 
aptRPM, local file sources, and most ZENworks management systems. You can use 
zypper to list, add, rename and delete repositories. Table 2-5 shows the commands 
needed for managing zypper repositories, along with shortcut abbreviations for the 
commands. Also, keep in mind that command line help can be obtained by typing 
zypper -h at the command line. 



Table 2-5: Managing zypper Repositories 



zypper Command 


Abbreviation 


Description 


addrepo 


ar 


Adds a new repository. You will need to provide a 
URI for the install source as well as a name for it. 


removerepo 


rr 


Removes a repository. 


repos 


rr 


Lists all known repositories and shows informa- 
tion about the repository such as its name and 
whether it's enabled or not. 


renamerepo 


nr 


Renames the alias of a repository. The source repos- 
itory has to be referred to by its alias. Remember to 
use quotes if you have whitespace or special shell 
characters in the alias. 


modifyrepo 


mr 


Modifies whether the repository is automatically 
refreshed or not, and whether it is enabled or not. 


refresh 


ref 


Re-downloads metadata for all known services or 
specific alias if given. 
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In the YaST section earlier, we added a repository from ftp . gwdg . de. We can demon- 
strate adding a Zypper repository using this same install location. First we'll remove 
the install location and then add, refresh, modify, and rename it. 

The following example tells zypper to show all the repositories it knows about as well as the 
status of those repositories (in all example output, fields too long to display have been 
edited to fit the page width). 



# zypper 


lr 












# 


Enabl 
Yes 


ed 


Refre 

No 


sh 


| Type 
| yast2 


Alias 


Name 


1 






openSUSE-10.3-. . . openSUSE-10 . 3- 


2 


Yes 




Yes 




| rpm-md 


madwi f i 


madwif i 


3 


Yes 




Yes 




| rpm-md 


Guru's RPM site 


Guru's RPM si. 


4 


Yes 




Yes 




| yast2 


http : / /downloa . . . 


Main Repositor 


5 


Yes 




Yes 




| rpm-md 


openSUSE-10.3-. . . 


openSUSE-10.3- 


6 


Yes 




No 




| yast2 


testcdrom 


testcdrom 


7 


Yes 




Yes 




| yast2 


http: //downloa. . . 


Main Repositor 



Zypper shows the repositories we had configured in YaST (your list may look a bit 
different). The following command will remove the repository named Guru's RPM site: 

# zypper rr "Guru's RPM site" 

# Removing repository ' Guru ' s_RPM_site ' 
Repository Guru's RPM site 1 has been removed. 

To add this location using zypper and give it the alias name Guru's RPM site, issue the zypper 
command as follows (you must use quotes around the service name as it contains 
whitespace and a single quote): 

# zypper ar http: //ftp. gwdg. de/pub/linux/misc/suser-guru/rpm/10.3/RPMS/ \ 
"Guru's RPM site" 

# Adding repository 'Guru's RPM site 1 
Repository 'Guru's RPM site' successfully added: 
Enabled: Yes 

Autorefresh: Yes 

URL: http: //ftp . gwdg . de/pub/linux/misc/suser-guru/rpm/10 . 3/RPMS/ 

Zypper will configure the new repository for use. After zypper is done, you can see it 
has added the new repository by issuing zypper lr as before. If you decide at a later 
date to rename the Guru's site to something different, you can use the zypper command like 
this to do so: 

# zypper nr "Guru's RPM site" ftp.gwdg.de 

Repository Guru's RPM site renamed to ftp.gwdg.de 
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# zypper lr 

# | Enabled | Refresh | Type 



Alias 



1 | Yes | No 

2 | Yes | Yes 

3 | Yes | Yes 



yast2 | openSUSE- 10. 3 -. . 
rpm-md | madwifi 
rpm-md | ftp.gwdg.de 



| Name 

| openSUSE-10.3- 

| madwifi 

| ftp.gwdg.de 



You can use the mr command to modify the Refresh or Enabled repository attrib- 
utes. Turning off the Refresh attribute will mean you have to refresh this repository 
manually; zypper will not do it automatically. You may want to disable repositories 
that you've added that deal with development software so you aren't automatically 
retrieving software from places that may be unstable. Here's an example of disabling a 
repository: 

# zypper mr -d "ftp.gwdg.de" 

Repository ftp.gwdg.de has been sucessfully modified. 

You can see the ftp . gwdg . de repository as disabled now: 



# zypper lr 

# | Enabled | Refresh | Type 



Alias 



1 | Yes | No 

2 | Yes | Yes 

3 | No | Yes 



yast2 | openSUSE-10.3- 
rpm-md | madwifi 
rpm-md | ftp . gwdg . de 



| Name 

| openSUSE-10.3- 

| madwifi 

| ftp.gwdg.de 



Likewise, the following command turns off the Refresh of the ftp . gwdg . de repository: 

# zypper mr --disable-autorefresh "ftp.gwdg.de" 

Repository ftp.gwdg.de has been sucessfully modified. 

If you refresh all the repositories now, you can see ftp . gwdg . de is left alone: 

# zypper ref 

Repository ' openSUSE-10 . 3-DVD 10.3' is up to date. 

Repository 'madwifi' is up to date. 

Repository 'Main Repository (NON-OSS)' is up to date. 

Repository ' openSUSE-10 . 3-Updates ' is up to date. 

Repository 'testcdrom' is up to date. 

Repository 'Main Repository (OSS) ' is up to date. 

All repositories have been refreshed. Note that the first repository is a DVD. You need 
to have the DVD mounted to refresh from that repository. You can use the -e flag, just 
as the -d flag was used, to re-enable the ftp . gwdg . de repository. The -a flag, used the 
same way, will re-enable automatic-refresh. 

# zypper mr -a ftp.gwdg.de 

Repository ftp.gwdg.de has been sucessfully modified. 
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# zypper mr -e ftp.gwdg.de 

Repository ftp.gwdg.de has been sucessfully modified. 

In the course of adding repositories, you may get prompted to accept a Package 
Signing Key. 



Do you want to trust key id A84EDAE89C800ACA SuSE Package Signing Key 
<build@suse.de> fingerprint : 79C179B2E1C820C1890F9994A84EDAE89C800ACA ? [y/n] : 

This is a method of digitally verifying the authenticity of packages you download from 
various installation sources. There is a potential for malicious software to be introduced 
into your system through the use of third-party sources, which may be difficult to verify. 
The signing key is a way for your system to verify that the software came from where it 
says it came from. There is no 100 percent surefire way to absolutely guarantee that 
the key you are about to accept hasn't been inserted into your network session some- 
where in the middle of your network connection. The odds may be slim, but nonethe- 
less there is some risk because the Internet is a public network. 

NOTE For more information on GPG and digitally signed packages, visit 
the GnuPG web site (www . gnupg . org) or have a look at the Security and 
Authentication with Digital Signatures article on the Linux Journal web site 

(www. linux journal . com/art icle/2 3 04). 

For more information about adding zypper services to openSUSE, visit the opensuse- 
community.org web site (http : / /opensuse-community . org/Package_ 
Sources). 

Searching for Software with zypper 

The zypper utility has a very feature-rich search utility built in that allows you to quickly 
and efficiently search through all, or certain, repositories for packages. Having the search 
utility right at your fingertips adds to making software maintenance very easy. Table 2-6 
shows some of the most useful search commands for zypper. 



Table 2-6: Useful zypper Search Commands 



Command 


Abbreviation 


Description 


search 


se 


Use with a search pattern to narrow the search query 
or without to see all available packages. Use -t to 
specify a resolvable to limit searching to. 


patches 


pch 


Search for and display all known patches. 


patch-info 




Include the patch name in the command to display 
full information about that patch. 



Continued 
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Table 2-6: Useful zypper Search Commands (continued) 



Command 


Abbreviation 


Description 


info 


if 


Include the package name to show full information 
about that package. 


list -updates 


lu 


List all available updates. 



The following example shows how to add a repository and search for packages and 
patches using the zypper command. In this example, we'll tackle software drivers for 
wireless networking cards, because you often require extra repositories to find drivers 
for wireless cards, and because the drivers get patched frequently. If your system sports 
a wireless card, you'll often want to install driver packages for your card, or download 
patches to update those drivers. 

The Madwifi (http : / /madwi f i . org/) project provides a SUSE repository of packages 
for the popular Atheros chipset, a chipset used in wireless networking cards from many 
vendors. For installing wireless networking kernel drivers, having a repository custom 
tailored for your SUSE system can be very handy. 

Start by adding the Madwifi install location using the zypper command in the same 
way as the previous example. Make sure you are adding the correct install location for 
the version of openSUSE you are running. Because we are using openSUSE 10.3 for 
this chapter, we'll add the 10.3 install location (change this for your version if neces- 
sary) and name the repository madwifi. 

# zypper ar http://madwifi.Org/suse/10.3/ madwifi 

You can now use the zypper command to perform a case-insensitive search of anything you 
want. You can see in the results that the search returned case-insensitive results for the 
original term. 

# zypper se wIFi 

# Reading installed packages [100%] 

S | Repository | Type | Name | Version | Arch 



| testcdrom | package | iwlwifi-kmp-x. . . | . 1 . 16_2 . 6 . 22 . . . . | i586 
| http: //downlo. . . | package | madwifi | 0.9.3.99-35 | i586 
| madwifi | package | madwifi | 0.9.3.2-1 | i586 
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If you search for something more generic, you'll see that zypper searches across all 
enabled repositories, and reports back with the packages and repositories where the 
search query was found: 

# zypper se util 

* Reading installed packages [100%] 



Repository 



| Type 



| Arch 



openSUSE- 10. 3. . 
http: //downlo. . 
testcdrom 
openSUSE- 10. 3 . . 
http: //downlo . . 



package 
package 
package 
package 
package 



alsa-utils 
alsa-utils 
alsa-utils 
apache2-utils . 
apache2-utils . 



1.0.14-25 

1.0.14-27 

1.0.14-25 

2.2.4-66 

2.2.4-70 



i586 
i586 
i586 
i586 
i586 



In the first column of the output is the package Status. A v or i in this column 
indicates that another version of the package is installed, or the package, as listed, is 
already installed. The second column shows in which Zypper repository the search 
word was found. The Type describes the type of resolvable the line refers to. Name 
and Version are obvious, and Arch lists whether this package is compiled for a 
specific system architecture. 

Zypper uses something called resolvables to designate the different types of resources 
you want it to work with. A resolvable can be a package, patch, pattern, language, 
or product. You can select the different types of resolvables using the - 1 flag along with the 
resolvable you want to act on: 



# zypper se -t patch 

S | Repository | Type [ Name 

openSUSE-10 .3 . . . | patch | fetchmsttfont . 

i | | patch | update-test-a. 



4347-0 
2609-0 



Arch 



noarch 
noarch 



To limit the patch search to a specific piece of software, you could add a search pattern to the 
zypper command: 

# zypper se -t patch msttfont 

* Reading installed packages [100%] 

S | Repository | Type | Name | Version | Arch 

| openSUSE-10.3-Updates. . . | patch | f etchmsttfonts . sh | 4347-0 | noarch 
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To search the language resolvables, use the -t language command to show just language 
resolvables instead of packages. To look for the Estonian language packs, for example, 
you would use a zypper command such as: 

# zypper se -t language et 

* Reading installed packages [100%] 

S | Repository | Type | Name | Version | Arch 
i | j language | et | noarch 

You can also use the zypper command to list available software patches by way of the 
pch command: 



* zypper pch 

* Reading repository 

* Reading repository 

* Reading repository 

* Reading repository 

* Reading repository 

* Reading repository 

* Reading repository 



'openSUSE- 10. 3 -DVD 10.3' cache 

'madwifi' cache 

' ftp . gwdg . de ' cache 

'Main Repository (NON-OSS) ' cache 

1 openSUSE-10 . 3-Updates ' cache 

1 testcdrom' cache 

'Main Repository (OSS) ' cache 



* Reading installed packages [100%] 

Repository: | Name | Version | Category | Status 

openSUSE-10. . . . | fetchmsttfonts . sh | 4347-0 | optional | Not Needed 

To view more information about the fetchmsttfonts.sh patch, you can issue the patch- info 
command to zypper along with the field from the Name column. It must match 
the Name column exactly: 

# zypper patch-info fetchmsttfonts.sh 

* Reading repository ' openSUSE-10 . 3-DVD 10.3' cache 

Name : fetchmsttfonts . sh 

Version: 4347-0 

Arch: noarch 

Status : Not Needed 

Category: optional 

Created On: Fri 21 Aug 1970 02:15:19 AM CDT 

You can also view similar information about a package (rather than a patch) by issuing the 
info command with zypper: 

# zypper info alsa-utils 

Information for package alsa-utils: 
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Repository: Main Repository (OSS) 

Name: alsa-utils 

Version: 1.0.14-27 

Arch: i586 

Installed: Yes 

Status : up-to-date 

Installed Size: 1.6 M 

Summary: Advanced Linux Sound Architecture Utilities 

Description: 

<!-- DT:Rich --> 

<p>This package contains utility programs supporting ALSA, Advanced Linux Sound 

Architecture . 

</p> 

You can also use the zypper command to list all available updates it knows about: 

* zypper In 

* Reading repository ' openSUSE-10 . 3-DVD 10.3' cache 

* Reading repository 'madwifi' cache 

* Reading repository 'Guru's RPM site' cache 

* Reading repository 'Main Repository (NON-OSS) ' cache 

* Reading repository ' openSUSE-10 . 3-Updates ' cache 

* Reading repository 'testcdrom' cache 

* Reading repository 'Main Repository (OSS) ' cache 

* Reading installed packages [100%] 

No updates found. 

Installing and Removing Software 
with zypper 

To install and remove software with zypper, you need only give the install (in) 
or remove (rm) command along with the package name. In the following example, 
zypper looks for information on the zoo archiving utility and finds it is in the Main 
Repository (OSS). 

* zypper info zoo 

Information for package zoo: 

Repository: Main Repository (OSS) 
Name: zoo 
Version: 2.10-938 

To install the zoo package, you only need to give the install or in command: 

* zypper install zoo 

* Reading repository ' openSUSE-10 . 3-DVD 10.3' cache 
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* Reading repository 'madwifi' cache 

* Reading repository 'ftp.gwdg.de' cache 

* Reading repository 'Main Repository {NON-OSS)' cache 

* Reading repository ' openSUSE-10 . 3-Updates ' cache 

* Reading repository ' testcdrom' cache 

* Reading repository 'Main Repository (OSS)' cache 

* Reading installed packages [100%] 

The following NEW package is going to be installed: 
zoo 

Overall download size: 62.9 K. After the operation, additional 108.2 K will be 

used. 

Continue? [yes/no] : 

The Main Repository (OSS) alias is a URL (which you might rename to something a 
little less unwieldy). To install zoo from a different repository, specify this with the -r flag: 

* zypper install -r testcdrom zoo 

* Reading repository 'testcdrom' cache 

* Reading installed packages [100%] 

The following NEW package is going to be installed: 
zoo 

Overall download size: 62.9 K. After the operation, additional 108.2 K will be 

used. 

Continue? [yes/no] : 

To remove the zoo package, use the remove or rm command with zypper: 

* zypper remove zoo 

* Reading installed packages [100%] 

The following package is going to be REMOVED: 
zoo 

After the operation, 108.2 K will be freed. 
Continue? [yes/no] : y 

* Removing zoo-2 . 10-938 [100%] 

To install an available patch that was returned from the zypper pch operation, 
zypper could be implemented this way: 

* zypper install -t patch fetchmsttfonts.sh 

The following NEW patch is going to be installed: 
f etchmsttf onts . sh 

The following NEW script is going to be installed: 
f etchmsttfonts . sh-4347-patch-fetchmsttfonts . sh-2 



32 



82928c02.qxd:Toolbox 11/1/07 12:18 PM Pac 



33 



Chapter 2: Installing openSUSE and Adding Software 



After the operation, 0. 
Continue? [yes/no] : 



will be freed. 



You can also use zypper to perform a complete update of your openSUSE system. With the 
update (up) command, zypper will collect the updated packages and patches it 
knows about and give you the option of applying them to your system: 



# zypper update 

* Reading repository 'openSUSE-lC 



.3 -DVD 10.3 ' cache 



Reading repository 
Reading repository 
Reading repository 
Reading repository 
Reading repository 
Reading repository 



madwifi 1 cache 

f tp.gwdg. de ' cache 

Main Repository (NON-OSS) ' cache 

openSUSE-10 . 3-Updates ' cache 

testcdrom 1 cache 

Main Repository (OSS) ' cache 



Reading installed packages [100%] 



Nothing to do. 



By using the shell command, you can work with zypper using a shell interface. This negates 
the need to include the zypper command every time you run a command. Once in the 
shell, just enter the commands you would normally use on the command line. Use the 
quit or exit command to exit the shell: 



# zypper shell 
zypper> lr 

# | Enabled) Refresh | Type 



| Alias 



1 


Yes 


No 


2 


Yes 


Yes 


3 


Yes 


Yes 


4 


Yes 


Yes 


5 


Yes 


Yes 


6 


Yes 


No 


7 


Yes 


Yes 



yast2 

rpm-md 

rpm-md 

yast2 

rpm-md 

yast2 

yast2 



openSUSE-10.3-. 

madwifi 

ftp.gwdg.de 

http: //downloa. 

openSUSE-10.3-. 

testcdrom 

http: //downloa. 



openSUSE-10.3-. . 

madwifi 

ftp.gwdg.de 

Main Repositor. . 

openSUSE-10.3-. . 

testcdrom 

Main Repositor. . 



zypper> quit 



NOTE To find out more about using the zypper command, visit the openSUSE 
web site under the Zypper Usage section (http ://en. opensuse . org/Zypper / 
Usage). 



Managing Software with RPM 



Although Zypper has some very handy features for installing RPM packages from 
online repositories, RPM has some extraordinary options for querying RPMs and 
verifying installed RPMs. It is also a useful tool for installing, removing, and validat- 
ing RPMs that are available on your computer. 

Using the rpm command, any user can query the local RPM database. To use the com- 
mand to install or remove software from your system, you must have root privileges. 
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Installing a Package with rpm 

The following example uses wget to download the rar package, a compression and 
packaging utility. The example then installs the rpm package located in the current directory. 
Options in the rpm command include -U for update or install, -v for verbose, and 
-h to show progress hash marks. 

NOTE The -i option o/rpm can also be used to install a package. However, most 
people use the -u option because it causes the package you are installing to replace 
an earlier, existing package of the same name if one exists. You can use the -i option, 
however, if you want multiple instances of the same package to exist on the system. 
Having multiple kernel packages is an example of this. 

# wget \ 

http: //packman.iu-bremen.de/suse/10.3/i586/rar-3 .7 . 1-0 .pm. . ib86 .rpm 

# rpm -Uvh rar-3.7.1-0.pm.0.i586.rpm 

Preparing... ##################################### [100%] 

l:rar ##################################### [100%] 

Using the rar package as an example, the following command installs the package directly 
from the Internet. This approach works with http and ftp protocols. 

# rpm -Uvh \ 

http: //packman.iu-bremen.de/suse/10.3/i586/rar-3 .7 . 1-0 .pm. . 1586 .rpm 

Retrieving http: //packman, iu-bremen.de/suse/10 . 3/i586/rar-3 .7.1-0.pm.0.i586 .rpm 
warning: /var/tmp/rpm-xf er . 9eOu3a: Header V3 DSA signature: NOKEY, key ID 
9a795806 

Preparing... ########################################### [100%] 

l:rar ########################################### [100%] 

Upgrading a Package with rpm 

If an older version of the package is already installed, an error will occur. Use rpm 
-Uvh to upgrade an existing package to a newer version: 

# rpm -Uvh \ 

http: //packman.iu-bremen.de/suse/10.3/i586/rar-3 .7 . 0-0 .pm. . i586 .rpm 

Retrieving http: //packman, iu-bremen.de/suse/10 . 3/i586/rar-3 .7.0-0.pm.0.i586 .rpm 
warning: /var/tmp/rpm-xf er.HgM2qb: Header V3 DSA signature: NOKEY, key ID 
9a795806 

Preparing... ########################################### [100%] 

l:rar ########################################### [100%] 

This example installed an older version of the command. To upgrade, use the same 
rpm command line options, but with a newer package. For example: 

# rpm -Uvh \ 

http: //packman.iu-bremen.de/suse/10.3/i586/rar-3 .7 . 1-0 .pm. . 1586 .rpm 

Retrieving http: //packman, iu-bremen.de/suse/10 . 3/i586/rar-3 .7.1-0.pm.0.i586. rpm 
warning: /var/tmp/rpm-xf er.HgM2qb: Header V3 DSA signature: NOKEY, key ID 
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9a795806 

Preparing... ########################################### [100%] 

l:rar ########################################### [100%] 

Removing a Package with rpm 

To remove an installed package, use the -e option as follows: 

# rpm -e flash-player 

Sometimes, you will find that rpm will not remove a package due to failed dependen- 
cies. This is one of the downsides of rpm — it does not resolve these dependencies. 

# rpm -e gzip 

error: Failed dependencies: 

gzip is needed by (installed) perl-5 . 8 . 8-75 . i586 
gzip is needed by (installed) mkinitrd-2 . 1-36 . i586 



The command failed because of dependency issues. The best way to resolve depend- 
ency issues is to use zypper or yast to work through the dependencies automatically. 
However, you may reach a point where you have to force the install or removal of a package. 

WARNING! Forcing the install or removal of a package is DANGEROUS and 
may result in an unstable system. Make sure you know precisely what you're 
doing. 

In this example, you specify that you want to remove the i586 version of the zoo 
package and ignore dependencies: 

# rpm -e --nodeps zoo-2. 10-938. i586 

Querying Information about RPM Packages 

The following example shows how to query installed packages for the zoo package 
and display version information about that package: 

# rpm -q zoo 

zoo-2 .10-938 

Use the -qp option to get information about an RPM file in the present directory: 

# rpm -qp zoo-2 .10-938. i586. rpm 

zoo-2. 10-938 

To see a list of all the packages installed on your system, type the following: 

# rpm -qa | less 

OpenOf f ice_org-templates-labels-letter-l . 0-2 
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kdegames4-carddecks-other-3 . 93 . 0-4 
glibc-il8ndata-2 .6.1-18 



Check a file on your system to see what package the file belongs to, if any: 

# rpm -qf /etc/sysctl.conf 

procps-3 . 2 . 7-67 

Now that you know how to select the package(s) you want to query let's get a little 
more information out of them. This example lists standard details about an installed package: 



zoo 

2.10 

938 



Relocations: (not relocatable) 

Vendor: SUSE LINUX Products GmbH, Nuernberg, 

Build Date: Fri 31 Aug 2007 09:23:01 PM CDT 



Germany 



# rpm -qi zoo 

Name 

Version 

Release 

Install Date 

Build Host 

Group 

Source RPM 

Size 

License 

Signature 

Packager 

Summary 

Description 

Zoo is a packer based on the Lempel-Ziv algorithm. Lots of files on 

DOS/AmigaDOS and TOS systems used this packer for their archives. The 

compression rate of gzip is not reached, and thus zoo should only be 

used for decompressing old archives. 



Sat 08 Sep 2007 12:47:21 PM CDT 

martinu . suse . de 

Product ivity/ Archiving /Compress ion 

zoo -2. 10-938. src .rpm 

110796 

Public Domain, Freeware 

DSA/SHA1, Fri 31 Aug 2007 09:24:02 PM CDT, Key ID a84edae89c800aca 

http : / /bugs . opensuse . org 

Pack Program 



Authors : 



Ian Phillipps 
J. Brian Waters 
Paul Homchick 
Mark Alexander 



<igp@camcon. co .uk> 
<jbwaters@bsu-cs .bsu.edu> 
<rutgers !cgh!paul> 
<amdahl Idrivax! alexande> 



Randal L. Barnes <rlb@skyler .mavd.honeywell .com> 
Distribution: openSUSE 10.3 (i586) 

This lists the content of an RPM file that's in the local directory: 

# rpm -qlp zoo-2 .10-938. i586. rpm 

/usr/bin/f iz 

/usr/bin/zoo 

/usr/ share/doc /packages /zoo 

/usr/ share/doc /packages /zoo /Copyright 

/usr/ share /man/manl/f iz . 1 .gz 

/usr/share/man/manl/zoo. 1 .gz 
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Combine various query options to check an RPM file before it's installed: 

# rpm -qilp zoo-2 .10-938. i586.rpm 



Ian Phillipps <igp@camcon. co .uk> 

J. Brian Waters <jbwaters@bsu-cs .bsu. edu> 

Paul Homchick <rutgers ! cgh!paul> 

Mark Alexander <amdahl !drivax! alexande> 

Randal L. Barnes <rlb@skyler.mavd.honeYwell.com> 
Distribution: openSUSE 10.3 (1586) 
/usr/bin/fiz 
/usr/bin/zoo 

/usr/ share /doc /packages /zoo 
/usr/ share /doc /packages /zoo /Copyright 
/usr/ share /man/manl/fiz . 1 .gz 
/usr/share/man/manl/zoo. 1 .gz 

This example lists preinstall and postinstall scripts that come with an installed RPM package: 

# rpm -q --scripts kernel -default | less 

Several other query options are available. See the rpm man page for details. The most 
powerful rpm query option is --query format (or --qf ). It lets you build from scratch 
the output string. This queries all installed packages to see what host they were built on: 

# rpm -qa --queryformat 'Package MNAME} was built on %{BUILDHOST}\n' | less 

Package cracklib-dict-full was built on yggdrasil.suse.de 
Package openSUSE-release was built on lruppl.suse.de 
Package OpenOf f ice_org-icon-themes was built on cara.suse.de 

The following command makes a sorted list of all non-SUSE packages: 

# rpm -qa --queryformat ^{VENDOR} MNAME}\n' | grep -v "SUSE" | sort 
Here are a few more examples: 

# rpm -qa --qf '%{NAME} is licenced under MLICENSE}\n' 

# rpm -qa --qf "The size of MNAME} is MSIZE} bytes\n" 

# rpm -qa --qf "For %{NAME} get more info here: %{URL}\n' 

# rpm -qa --qf "For %{NAME} the architecture is: MARCH} \n' 

# rpm -qa --qf "The %{NAME} package is: 5 & {SUMMARY}\n' 

As you can imagine, the combinations are endless. Here's how to list all of the variables: 

# rpm --querytags | less 
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Verifying Installed Packages with rpm 

There are times when you will question the behavior of a binary or package installed 
on the system. It may not perform correctly, or may not even start at all. Problems with 
corrupt packages from unstable network connections or power outages do happen. It 
becomes useful to check the files on the file system against the information stored in the 
RPM database. 

NOTE It's possible that an intruder that replaces a key binary file may also have 
tampered with your RPM database. So, use this tool as one way of checking the 
validity of your system, but not necessarily the only way. 

For each file verified, rpm runs multiple checks and displays the result in a series of 
characters at the beginning of the line. A dot means the check was okay. A letter or 
number means the check failed. Table 2-7 shows the most useful checks and the char- 
acters that represent their failure. 



Table 2-7: RPM Package Verification Failure Messages 



Letter Indicating Check Failure 


Description 


S 


File size differs 


M 


Mode differs: includes permissions and file type 


5 


MD5 checksum differs 


U 


User ownership differs 


G 


Group ownership differs 


T 


mTime (timestamp of last modification) differs 



Use the following command to verify all installed packages and filter for files with bin in 
their path: 

# rpm -Va | grep bin 

S.5....T /usr /bin/curl 



This shows that the curl binary on the file system has a different size, MD5 checksum, 
and modification time than the one that came with the curl RPM. In other words, this 
file has been replaced. Here are a few other examples using the verify option: 



# rpm -Vv coreutils 

# rpm -V -f /usr/bin/pr 



Verbose check files from coreutils 
Verify package containing- pr 
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For further information on using the rpm command, check the rpm man page (man rpm) 
or display help information (rpm --help). 

Building RPMs from SRPMs 

By rebuilding the source code that is used to build an RPM package, you can change 
it to better suit the way you use the software. To begin, you need to get the source 
RPMs (SRPMs) you want to modify and install the rpm-devel package (zypper 
install rpm-devel). 

For example, you could download and rebuild the BashBurn SRPM package in the 
current directory by typing the following command: 

# wget \ 

http: //packman. iu-bremen.de/suse/ 10 . 3 /src /BashBurn -2 .1.1-0 .pm.l.src.rpm 

# rpmbuild --rebuild BashBurn-2 .1.1-0. pm.l.src.rpm 

Installing BashBurn-2 . 1 . 1-0 .pm. 1 . src . rpm 

warning: InstallSourcePackage: Header V3 DSA signature: NOKEY, key ID 9a795806 

Executing (%prep) : /bin/sh -e /var/tmp/rpm-tmp. 10228 

+ umask 022 

+ cd /usr/src/packages/BUILD 

+ cd /usr/src/packages/BUILD 

+ cd /usr/src/packages/BUILD 
+ rm -rf BashBurn-2 . 1 . 1 
+ exit 

# Is -1 /usr/src/packages/RPMS/noarch/ 

total 84 

-rw-r--r-- 1 root root 79858 2007-09-08 14:22 BashBurn-2 . 1 . 1-0 .pm. 1 .noarch. rpm 

When a source code package (src. rpm) is installed, rpm places the files it contains in 
default build tree under the /usr/src/packages/ directory, as shown with the Is 
command. You can install the source RPM package, make changes to the source files of that package, 
and then rebuild the package using the commands shown in the following example: 

# rpm -Uvh BashBurn-2 .1. 1-0. pm. 1. src. rpm 

1: BashBurn ##################################### [100%] 

# rpmbuild -bb /usr/src/packages/SPECS/BashBurn.spec 

Executing (%prep) : /bin/sh -e /var/tmp/rpm-tmp. 50246 

+ umask 022 

+ cd /usr/src/packages/BUILD 

+ cd /usr/src/packages/BUILD 

+ rm -rf BashBurn-2 . 1 . 1 

+ /usr/bin/gzip -de /usr/src/packages/SOURCES/BashBurn-2 . 1 . 1 . tar .gz 

# Is -1 /usr/src/packages/RPHS/noarch/BashBurn-2. 1. 1-0 .pm. 1. noarch. rpm 

-rw-r--r-- 1 root root 79915 2007-09-08 14:28 
/usr/src/packages /RPMS /noarch/ BashBurn- 2 . 1 . 1-0 .pm. 1 .noarch. rpm 
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The result of this command is an RPM file that is output to a directory that is specific 
to your computer architecture: /usr/src/packages/RPMS/noarcfr/, where arch 
is replaced by a name indicating the computer architecture (such as i386, i586, and so 
on). The resulting RPM file is ready to be installed. 

Extracting Files from RPMs 

An RPM is basically an archive of files that you want to install to your computer and 
some header information that identifies the software (descriptions, checksums, build 
information, and so on). You can remove the archive from an RPM package and out- 
put the archive to a cpio archive file. 

The cpio format is similar to the tar format, described in Chapter 8, and can be similarly 
used for backing up and transporting files. Here's an example using the rpm2cpio com- 
mand to extract the cpio archive from an RPM: 

# rpm2cpio BashBurn-2 . 1.1-0 .pm.l.src.rpm > BashBurn-2. 1. 1-0. pm. l.src. cpio 

In this example, the software archive contained within the BashBurn RPM package is 
extracted to a cpio archive named BashBurn-2. 1.1-O.pm.l.src. cpio. Instead of sending 
the output of the rpm2cpio command to a cpio archive file, you can pipe it through the 
cpio -tv command to view a long listing of the contents of that archive: 

# rpm2cpio BashBurn-2 . 1.1-0 .pm.l.src.rpm | cpio -tv 

-rw-rw 1 root root 103937 Aug 31 15:41 BashBurn-2 . 1 . 1 . tar . gz 

-rw-rw 1 root root 3128 Aug 31 15:41 BashBurn. spec 

The results of the preceding command can also be produced by the rpm command. For 
example, rpm -qlvp BashBurn-2 .1.1-0 .pm. 1 . src . rpm produces the identical 
output of the rpm2cpio command line shown. 

To extract a single file from an RPM file, you can use rpm2cpio with a cpio -idv command 
that indicates the file you want. In the following command, the BashBurn. spec file 
is extracted to the current directory. 

# rpm2cpio BashBurn-2 . 1.1-0 .pm.l.src.rpm | cpio -idv BashBurn . spec 

If you try the above example, the package you get may have different version numbers. 



Summary 



Software for openSUSE and other SUSE-based distributions is packaged in RPM format. 
The YaST installer is used to initially install openSUSE, SLED, and SLES. Using boot 
options, you can choose different install types and adapt to different environments. To 
install additional software, you can use the YaST and zypper utilities to get packages 
from online repositories. To install packages locally, or query and verify installed pack- 
ages, you can use the RPM tools. 
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Using the Shell 



The use of a shell command interpreter (usually 
just called a shell) dates back to the early days of 
the first Unix systems. Besides its obvious use of 
running commands, shells have many built-in fea- 
tures such as environment variables, aliases, and 
a variety of functions for programming. Although 
the shell used most often with Linux systems is 
called the Bourne Again Shell (bash), there are 
other shells available as well (such as sh, csh, ksh, 
tcsh, and others). Some of these shells are out- 
growths or replacement versions of older shells, a 
fact reflected by, for example, sh being a symbolic 
link to bash. 



IN THIS CHAPTER 

Accessing the shell 

Using command his- 
tory and completion 

Assigning aliases 

Gaining superuser 
access 

Writing simple shell 
scripts 



This chapter offers information that will help you 

use Linux shells, in general, and the bash shell, in particular. 



Terminal Windows and Shell Access 

The most common way to access a shell from a Linux graphical interface is 
using a Terminal window. From a graphical interface, you can often access 
virtual terminals to get to a shell. With no graphical interface, with a text- 
based login you are typically dropped directly to a shell after login. 

NOTE SUSE has traditionally supplied the K Desktop Environment, 
or KDE, as the default. Modern versions of SUSE supply both KDE and 
its main competitor, the GNOME desktop environment. The graphical 
examples in this book use the traditional KDE environment. Similar 
commands exist within the GNOME environment. 



Using Terminal Windows 

To open a Terminal window from KDE (the default SUSE desktop), select 
the reptile menu (based on the SUSE logo) and from the default Favorites 
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pane, select Terminal Program. This opens a konsole window, displaying a bash shell 
prompt. Figure 3-1 shows an example of a konsole window. 



- Mm&j*j^*xsMwm^ - 



Session Edit View Bookmarks Settings Holp 



[eriuf,i@Br"uJ^cir r 

/bin /bash 

L q r i e f j OBrodgar 1 

ericfj 

[eriufjODVud^cjr 

/home/eric Tj 

L Q r i c f j ©Br'odgar* 



]t echo SSHELL 
'It whoami 



JJ | 



~ 



or- I ■ shell I 



IS1 



Figure 3-1: Type shell commands into a konsole window. 



Commands shown in Figure 3-1 illustrate that the current shell is the bash shell 
(/bin/bash), the current user is the desktop user who launched the window (ericfj), 
and the current directory is that user's home directory (/home/ericf j). The user 
name (ericfj) and hostname (Brodgar) appear in the title bar. 

The konsole window not only lets you access a shell, it also has controls for managing 
your shells. For example, click Session O New Shell to open another shell on a different tab, 
or click Session O New Window to open a new Terminal window. 

Other key sequences for controlling Terminal windows include pressing Ctrl+Shift+f 
to show the window in full screen mode. Type Ctrl+d to exit the shell, which closes the 
current tab or entire Terminal window (if it's the last tab). The konsole window sup- 
ports a handy program called screen. Select New Screen Session from the Session menu 
to launch the screen program in a new tab. 

The konsole window also supports profiles (select Settings O Save as Default to save 
the current settings as your new defaults). Some profile settings are cosmetic (allow bold 
text, cursor blinks, terminal bell, colors, images, and transparency). Other settings are func- 
tional. For example, by default, the terminal saves 1000 scrollback lines. Some people 
like to be able to scroll back further and are willing to give up more memory to allow 
that. See all the choices on the Settings menu for details. 
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If you launch konsole manually, you can add options. Here are some examples: 



$ konsole -e alsamixer 
$ konsole --vt_sz 80x20 
$ konsole --profile name 



Start terminal with alsamixer displayed 
Start terminal 80 characters hy 20 lines 
Start terminal using named session profile 



Besides konsole, there are other terminal windows you can use such as xterm (basic 
terminal emulator that comes with the X Window System) or gnome-terminal (ter- 
minal emulator delivered with the GNOME desktop). The Enlightenment desktop 
project offers the eterm terminal (which includes features such as message logs on 
the screen background). 



Using Virtual Terminals 



When SUSE boots in multi-user mode (runlevel 2, 3, or 5), six virtual consoles (known 
as ttyl through tty6) are created with text-based logins. If an X Window System desktop 
is running, X is probably running in virtual console 7. If X isn't running, chances are 
you're looking at virtual console 1. 

From X, you can switch to another virtual console with Ctrl+Alt+Fl, Ctrl+Alt+F2, and so on 
up to F6. From a text virtual console, you can switch using Alt+Fl, Alt+F2, and so on. 
Press Alt+F7 to return to the X GUI. Each console allows you to log in using different 
user accounts. Switching to look at another console doesn't affect running processes 
in any of them. When you switch to virtual terminal one through six, you see a login 
prompt similar to the following: 



Welcome to openSUSE 10.3 (i586) 
localhost login: 



Kernel 2 . 6 . 22 . 5-29-default (tty2). 



Separate mingetty processes manage each virtual terminal. Type this command to 
see what mingetty processes look like before you log in to any virtual terminals: 

$ ps awx | grep -v grep | grep mingetty 



8573 ttyl Ss+ 0:00 /sbin/mingetty --noclear ttyl 

8574 tty2 Ss+ 0:00 /sbin/mingetty tty2 
8577 tty3 Ss+ 0:00 /sbin/mingetty tty3 

8579 tty5 Ss+ 0:00 /sbin/mingetty tty5 

8580 tty6 Ss+ 0:00 /sbin/mingetty tty6 



After I log in on the first console, i 
bash shell: 



Lngetty handles my login and then fires up a 



$ ps awx I grep -v grep | grep tty 



8573 


ttyl 


Ss+ 





00 


/sbin/mingetty 


--noclear 


ttyl 


8574 


tty 2 


Ss+ 





00 


/sbin/mingetty 


tty 2 




8577 


tty 3 


Ss+ 





00 


/sbin/mingetty 


tty 3 




8579 


tty5 


Ss+ 





00 


/sbin/mingetty 


tty 5 




8580 


tty6 


Ss+ 





00 


/sbin/mingetty 


tty 6 




23841 


ttyl 


Ss+ 





00 


-bash 
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Virtual consoles are configured in the /etc/inittab file. You can have fewer or more 
virtual terminals by adding or deleting mingetty lines from that file. 



Using the Shell 



After you open a shell (whether from a text-based login or Terminal window), the shell 
environment is set up based on the user who started the shell. Bash shell settings for all 
users' shells are located in /etc /bash, bashrc, /etc /profile, and /etc /prof ile.d/. 
User-specific shell settings are determined by commands executed from several dot 
files in the user's home directory (if they exist): . bash_prof ile, . bash_login, and 
.profile. When a shell is closed, any commands in the user's -/ .bash_logout file 
are executed. Changing settings in these files permanently changes the user's shell set- 
tings but does not affect shells that are already running. (Other shells use different con- 
figuration files.) 

There are a variety of ways in which you can list and change your shell environment. 
One of the biggest ways is to change which user you are; in particular, to become the 
super user (see "Acquiring Super User Power" later in this chapter). 



Using Bash History 



The Bourne Again Shell (bash) is the shell used by default by most modern Linux 
systems. Built into bash, as with other shells, is a history feature that lets you review, 
change, and reuse commands that you have run in the past. 

When bash starts, it reads the -/ .bash_history file and loads it into memory. This 
file is set by the value of $HISTFILE. During a bash session, commands are added to 
history in memory. When bash exits, history in memory is written back to the . bash_ 
history file. The number of commands held in history during a bash session is set by $histsize, 
while the number of commands actually stored in the history file is set by $histfilesize: 

$ echo $HISTFILE $HISTSIZE $HISTFILESIZE 

/home/fcaen/.bash_history 1000 1000 

To list the entire history, type history. To lista previous number of history commands, follow 
history with a number. This lists the previous five commands in your history: 



$ history 5 




975 


mkdir extras 


976 


mv 


*doc 


extras/ 


977 


Is 


-CF 




978 


vi 


house 


.txt 


979 


history 





To move among the commands in your history, use the up arrow and down arrow. Once a 
command is displayed, you can use the keyboard to edit the current command like any 
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other command: left arrow, right arrow, Delete, Backspace, and so on. Here are some 
other ways to recall and run commands from your bash history: 

$ ! ! Run the previous command 

$ 1997 Run command number 997 from history 

Is -CF 

$ 1997 *doc Append *doc to command 997 from history 

Is -CF *doc 

$ ! ?CF? Run previous command iine containing the CF string 

Is -CF *doc 

$ !ls Run the previous is command 

Is -CF *doc 

$ !ls:s/CF/l Run previous is command, replacing CF with 1 

Is -1 *doc 

Another way to edit the command history is using the fc command. With f c, you open the 
chosen command from history using the vi editor. The edited command runs when you 
exit the editor. Change to a different editor by setting the FCEDIT variable (for example, 
FCEDIT=gedit) or on the f c command line. For example: 

$ fc 978 Edit command number 978, then run it 

$ fc Edit the previous command, then run it 

$ fc -e /usr/bin/nano 989 Use nano to edit command 989 

NOTE On SUSE, you must install the separate package nano to get the nano 
text editor. 

Use Ctrl+r to search for a string in history. For example, typing Ctrl+r followed by the 
string ss resulted in the following: 

# <Ctrl+r> 

(reverse-i-search) ' ss ' : sudo /usr/bin/less /var/log/messages 

Press Ctrl+r repeatedly to search backwards through your history list for other occurrences of 
the ss string. 

NOTE By default, bash command history editing uses emacs-style commands. If 
you prefer the vi editor, you can use vi-style editing of your history by using the 
set command to set your editor to vi. To do that, type the following: set -o vi. 

Using Command Line Completion 

You can use the Tab key to complete different types of information on the command 
line. Here are some examples where you type a partial name, followed by the Tab key 
to have bash try to complete the information you want on your command line: 

$ zy<Tab> Command completion: Completes to zypper command 

$ cd /home/ch<Tab> File completion: Completes to /home/chris directory 

$ cd ~jo<Tab> User homedir completion: Completes to /home/ John 

$ echo $PAT<Tab> Env variable completion: Completes to $PATH 
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Redirecting stdin and stdout 

Typing a command in a shell makes it run interactively. The resulting process has two 
output streams: stdout for normal command output and stderr for error output. In 
the following example, when / tmpp isn't found, an error message goes to stderr but 
output from listing / tmp (which is found) goes to stdout: 

$ Is /tmp /tmpp 

Is: /tmpp: No such file or directory 

/tmp/ : 

gconfd-fcaen keyring-b41WuB keyring-ItEWbz mapping-fcaen orbit-fcaen 

By default, all output is directed to the screen. Use the greater-than sign (>) to direct 
output to a file. More specifically, you can direct the standard output stream (using >) 
or standard error stream (using 2>) to a file. Here are examples: 

$ Is /tmp /tmmp > output.txt 

Is: /tmpp: No such file or directory 

$ Is /tmp /tmmp 2> errors.txt 

/tmp/ : 

gconfd-fcaen keyring-b41WuB keyring-ItEWbz mapping-fcaen orbit-fcaen 

$ Is /tmp /tmmp 2> errors.txt > output.txt 

$ Is /tmp /tmmp > everything.txt 2>&1 

In the first example, stdout is redirected to the file output . txt, whereas stderr is still 
directed to the screen. In the second example, stderr (stream 2) is directed to errors 
. txt whereas stdout goes to the screen. In the third example, the first two examples 
are combined. The last example directs both streams to the everything . txt file. To 
append to a file instead of overwriting it, use two greater-than signs: 

$ Is /tmp >> output.txt 

If you don't ever want to see an output stream, you can simply direct the output stream to 
aspecial bit bucket file (/dev/null): 

$ Is /tmp 2> /dev/null 

TIP Another time you may want to redirect stderr is when you run jobs with 
crontab. You could redirect stderr to a mail message that goes to the crontab's 
owner. That way any error messages can be sent to the person running the job. 
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Just as you can direct standard output from a command, you can also direct standard input 
to a command. For example, the following command e-mails the /etc /hosts file to the 
user named chris on the local system: 

$ mail chris < /etc/hosts 

Using pipes, you can redirect output from one process to another process rather than just files. 
Here is an example where the output of the Is command is piped to the sort com- 
mand to have the output sorted: 

$ Is /tmp | sort 

In the next example, a pipe and redirection are combined (the stdout of the Is command is 
sorted and stderr is dumped to the bit bucket): 

$ Is /tmp/ /tmmp 2> /dev/null | sort 

Pipes can be used for tons of things: 

$ rpm -qa | grep -i sql | wc -1 

$ ps auwx | grep firefox 

$ ps auwx | less 

$ whereis -m rpm | awk '{print $2}' 

The first command line in the preceding code lists all installed packages, grabs those 
packages that have sql in them (regardless of case), and does a count of how many 
lines are left (effectively counting packages with sql in the name). The second com- 
mand line displays Firefox processes taken from the long process list (assuming the 
Firefox web browser is running). The third command line lets you page through 
the process list. The last line displays the word rpm: followed by the path to the 
rpm man page, and then displays only the path to the man page (the second ele- 
ment on the line). 

Using backticks, you can execute one section of a command line first and feed the output of that 
command to the rest of the command line. Here are examples: 

$ rpm -qf 'which ps' 
$ Is -1 'which zypper' 

The first command line in the preceding example finds the full path of the ps com- 
mand and finds the package that contains that ps command. The second command 
line finds the full path to the zypper command and does a long list (is -1) of that 
command. 
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A more advanced and powerful way to take the output of one command and pass it as parame- 
ters to another is with the xargs command. For example: 

$ Is /usr/bin/rpm* | xargs rpm -qf 

To display the command xargs is going to run, use the following: 

$ Is /usr/bin/rpm* | xargs -t rpm -qf 

rpm -qf /usr/bin/rpm2cpio /usr/bin/rpmbuild /usr/bin/rpmdb /usr/bin/rpme 

/usr/bin/rpmgraph /usr/bin/rpmi /usr/bin/rpmlocate /usr/bin/rpmqpack 

/usr/bin/rpmquery /usr/bin/rpmsign /usr/bin/rpmu /usr/bin/rpmverify 

rpm-4.4.2-14 

rpm-4.4.2-14 

rpm-4.4.2-14 

rpm-4.4.2-14 

rpm-4.4.2-14 

rpm-4.4.2-14 

aaa_base-10.3-90 

rpm-4.4.2-14 

rpm-4.4.2-14 

rpm-4.4.2-14 

rpm-4.4.2-14 

rpm-4.4.2-14 

In this example, the entire output of Is is passed to a single rpm -qf command. Using 
the -t option to xargs, a verbose output of the command line appears before the com- 
mand is executed. Now let's have xargs pass each output string from Is as input to 
individual rpm commands. We define { } as the placeholder for the string: 

$ Is /usr/bin/rpm* | xargs -t -I{} rpm -qf {} 

rpm -qf /usr/bin/rpm2cpio 

rpm-4.4.2-14 

rpm -qf /usr/bin/rpmbuild 

rpm-4.4.2-14 

rpm -qf /usr/bin/rpmdb 

rpm-4.4.2-14 

rpm -qf /usr/bin/rpme 

rpm-4.4.2-14 

rpm -qf /usr/bin/rpmgraph 

rpm-4.4.2-14 

rpm -qf /usr/bin/rpmi 

rpm-4.4.2-14 

rpm -qf /usr/bin/rpmlocate 

aaa_base-10.3-90 

rpm -qf /usr/bin/rpmqpack 

rpm-4.4.2-14 

rpm -qf /usr/bin/rpmquery 

rpm-4.4.2-14 

rpm -qf /usr/bin/rpmsign 
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rpm-4.4.2-140 

rpm -qf /usr/bin/rpmu 

rpm-4.4.2-140 

rpm -qf /usr/bin/rpmverify 

rpm-4.4.2-140 

As you can see from the output, separate rpm -qf commands are run for each option 
passed by Is. 



Using alias 



Use the alias command to set and list aliases. Some aliases are already set in your sys- 
tem's /etc/bashrc or /etc /profile . d/* files or the user's -/ .bashrc file. Here's 
how to list the aliases that are currently set: 

$ alias 

alias += 'pushd . ' 

alias -= ' popd ' 

alias , .= ' cd . . ' 

alias . . , = ' cd ../..' 

alias beep= ' echo -en "\007"' 

alias cd. .= 'cd . . ' 

alias dir= ' Is -1' 

alias l='ls -alF' 

alias la= ' Is -la' 

alias 11= 'Is -1 ' 

alias ls='ls $LS_OPTIONS ' 

alias ls-l = 'Is -1 ' 

alias md='mkdir -p ' 

alias o= ' less ' 

alias rd='rmdir' 

alias rehash='hash -r ' 

alias unmount = ' echo "Error: Try the command: umount" 1>&2; false 1 

alias you= ' su - -c "/sbin/yast2 online_update" ' 

Notice that some aliases are set simply as a way of adding options to the default behav- 
ior of a command (such as ls= ' Is $LS_OPTlONS ' , which adds any file listing options 
from an environment variable into the default Is command). You can define your own aliases 
for the current bash session as follows: 

$ alias la='ls -la* 

Add that line to your ~ / . bashrc file for the definition to occur for each new bash ses- 
sion. Remove an alias from the current bash session using the unalias command, as follows: 

$ unalias la Unalias the previously aliased la command 

$ unalias -a Unalias all aliased commands 
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Watching Commands 



If you need to keep an eye on a command whose output is changing, use the watch 
command. For example, to keep an eye on your load average: 

$ watch 'cat /proc/loadavg' 

Every two seconds, watch runs the cat command again. Use Ctrl+c to quit. To change 
the refresh rate to 10 seconds, type the following: 

$ watch -n 10 'Is -1" 

To highlight the difference between screen updates, type: 

$ watch -d 'Is -1' 

Type Ctrl+c to exit the watch command. 



Watching Files 



You can use the watch command to watch the size of a file. For example, to watch a 
large ISO file named mydownload . iso as it downloads, use the following command: 

$ watch 'Is -1 mydownload. iso' 

To watch the contents of a plain text file grow over time, you can use the tail com- 
mand. For example, you can watch as messages are added to the /var / log/messages 
file as follows: 

# tail -f /var/log/messages 

Pressing Ctrl+c will exit from the tail command. You must have superuser permis- 
sions to access the messages file. 



Acquiring Superuser Power 



When you open a shell, you are able to run commands and access files and directories 
based on your user/group ID and the permissions set for those components. Many sys- 
tem features are restricted to the root user, also referred to as the superuser. 



Using the su Command 



With a shell open as a regular user, you can use the su (superuser) command to become 
the root user. However, simply using su, as in the following code, doesn't give you a login 
shell with root's environment: 



$ su 

Password: ***** 
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# echo $PATH 

/opt/kde3/bin: /home/ericf j /bin: /usr/ local /bin: /usr/bin: /sbin: /usr/sbin: /bin: /usr 
/bin/ XI 1 : /usr/XHR6/bin: /usr /games :/usr/lib/jvm/jre/bin:/usr/lib/mit/bin:/usr/ 
lib/mit/sbin 

After running su, the user still has fcaen's PATH. To enable the root user's environment, use 
the su command with the dash option (-), as follows: 

# exit 

$ su - 

Password: ***** 

# echo $PATH 

/sbin: /usr/sbin: /usr /local /sbin: /root /bin: /usr /local /bin: /usr/bin: /bin: /usr/bin/ 
Xll:/usr/XllR6/bin: /usr /games : /opt/kde3/bin: /usr/lib/jvm/jre/bin: /usr/lib/mit/ 
bin: /usr /lib/mit/sbin 

In most cases, use su -, unless you have a very specific reason not to. If no user is spec- 
ified, su defaults to the root user. However, su can also be used to become other users: 

$ su - cnegus 

The su command can also be used to execute a single command as a particular user: 

$ su -c whoami 
Password: ****** 
root 

# su -c 'less /var/log/messages' 

Although in the second example you are logged in as a regular user, when you run 
whoami with su -c, it shows that you are the root user. In the directly preceding 
example, the quotes are required around the less command line to identify /var/log/ 
messages as an option to less. As seen above, whoami can be useful to determine which 
user you're currently running a command as: 

$ whoami 

fcaen 

Delegating Power with sudo 

The sudo command allows very granular delegation of power to users other than 
the root user. The sudo facility is a great tool for granting specific escalated privileges 
when you have multiple users and logging everything the users do with those privi- 
leges. Unless otherwise specified, sudo runs as root. 

The sudo command is configured in /etc/sudoers. 

If you look at the sudoers file that shipped with your distribution, you'll see different 
empty sections delimited by comments and one active statement: 

root ALL=(ALL) SETENV: ALL 
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This means that the user root is allowed on any hosts to run any command as any user. 
Now add the following line setting the first field to a user account on your system: 

fcaen ALL= /usr/bin/less /var/log/messages 

Now fcaen (or whichever user you've added) can do the following: 

$ sudo /usr/bin/less /var/log/messages 

Password: 

After fcaen types his own password, he can page through the /var/log/messages 
file. A timestamp is set at that time as well. For the next five minutes (by default), that 
user can type the command line above and have it work without being prompted for 
the password. 

WARNING! Adding users and commands to the sudoers file can open your 
system to security breaches. 

Every use of sudo gets logged in /var/log/messages: 

Sep 28 20:37:58 Brodgar sudo: fcaen : TTY=pts/3 ; PWD=/home/fcaen ; USER=root 
; COMMAND=/usr/bin/less /etc/sudoers 

Next add this line to /etc/sudoers: 

fcaen serverl= (chris) /bin/Is /home/chris 

Now fcaen can do the following: 

$ sudo -u chris /bin/Is /home/chris 

The sudo command just shown runs as chris and will work only on the host serverl. 
In some organizations, the /etc/sudoers file is centrally managed and deployed to 
all the hosts, so it can be useful to specify sudo permissions on specific hosts. 

The sudo command also allows the definition of aliases, or predefined groups of 
users, commands, and hosts. Check the /etc/sudoers file on your Linux system 
for examples of those features. 



Using Environment Variables 



Small chunks of information that are useful to your shell environment are stored in what 
are referred to as environment variables. By convention, environment variable names are 
all uppercase (although that convention is not enforced). If you use the bash shell, some 
environment variables are set for you from various bash start scripts, described previ- 
ously in the section "Using the Shell." 
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To display all of the environment variables, in alphabetical order, that are already set for your 
shell, type the following: 

$ set I less 

BASH= /bin/bash 

COLORS=/etc/DIR_COLORS.xterm 

COLUMNS=118 

DISPLAY=:0.0 

HOME=/home/fcaen 

HOSTNAME=einstein 



The output just shown contains only a few examples of the environment variables you 
will see. You can also set, or reset, any variables yourself. For example, to assign the value 123 
to the variable ABC (then display the contents of ABC), type the following: 

$ ABC=123 
$ echo $ABC 

123 

The variable ABC exists only in the shell it was created in. If you launch a command 
from that shell (is, cat, f iref ox, and so on), that new process will not see the vari- 
able. Start a new bash process and test this: 

$ bash 

$ echo $ABC 



You can make variables part of the environment and inheritable by children processes by export- 
ing them: 

$ export ABC=123 

$ bash 

$ echo $ABC 

123 

Also, you can concatenate a string to an existing variable: 

$ export PATH=$PATH: /home/fcaen 

To list your bash's environment variables: 

$ env 

When you go to create your own environment variables, avoid using names that are 
already commonly used by the system for environment variables. See Appendix B for 
a list of shell environment variables. 
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Creating Simple Shell Scripts 



Shell scripts are good for automating repetitive shell tasks. Bash and other shells include 
the basic constructs found in various programming languages, such as loops, tests, 
case statements, and so on. The main difference is that there is only one type of vari- 
able: strings. 

Editing and Running a Script 

Shell scripts are simple text files. You can create them using your favorite text editor 
(such as vi). To run, the shell script file must be executable. For example, if you created 
a shell script with a file name of myscript . sh, you could make it executable as follows: 

$ chmod u+x myscript . sh 

Also, the first line of your bash scripts should always be the following: 

#! /bin/bash 

As with any command, besides being executable the shell script you create must also 
either be in your PATH or be identified by its full or relative path when you run it. In 
other words, if you just try to run your script, you may get the following result: 

$ myscript . sh 

bash: myscript. sh: command not found 

In this example, the directory containing myscript . sh is not included in your PATH. 
To correct this problem, you can edit your path, copy the script to a directory in your 
PATH, or enter the full or relative path to your script. Those four examples, respectively, 
are shown below: 

$ mkdir -/bin ; cp myscript. sh -/bin/ ; PATH=$PATH:-/bin 
$ cp myscript. sh /usr/local/bin 
$ . /myscript . sh 
$ /tmp/myscript.sh 

Avoid putting a dot (.) into the PATH to indicate that commands can be run from the 
current directory. This is a technique that could result in commands with the same file 
name as important, well-known commands (such as Is or cat), which could be over- 
ridden if a command of the same name exists in the current directory. 

Adding Content to Your Script 

Although a shell script can be a simple sequence of commands, shell scripts can also 
be used as you would any programming language. For example, a script can produce 
different results based on giving it different input. This section describes how to use 
compound commands, such as if /then statements, case statements, and for/while 
loops in your shell scripts. 
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The following example code assigns the string abc to the variable MYSTRING. It then 
tests the input to see if it equals abc and acts based on the outcome of the test. The test 
is what takes place between the brackets ( [ ] ): 

MYSTRING=abc 

if [ $MYSTRING = abc ] ; then 

echo "The variable is abc" 

fi 



To negate the test, use ! = instead of = as shown in the following: 

if [ $MYSTRING != abc ] ; then 
echo "$MYSTRING is not abc"; 
fi 

The following are examples of testing for numbers: 



MYNUMBER=1 






if 


$MYNUMBER 


-eq 


1 ] 


if 


$MYNUMBER 


-It 


2 ] 


if 


$MYNUMBER 


-le 


1 ] 


if 


$MYNUMBER 


-gt 


] 


if 


$MYNUMBER 


-ge 


1 ] 



then echo "MYNUMBER equals 1"; fi 
then echo "MYNUMBER <2 " ; fi 
then echo "MYNUMBER <=1"; fi 
then echo "MYNUMBER >0"; fi 
then echo "MYNUMBER >=1"; fi 



Let's look at some tests on file names. In this example, you can check if a file exists ( -e), 
if it's a regular file (-f), or if it is a directory (-d). These checks are done with if /then 
statements. If there is no match, then the else statement is used to produce the result. 

f ilename= " $HOME " 

if [ -e $filename ] ; then echo "$filename exists"; fi 

if [ -f "$filename" ] ; then 

echo "$filename is a regular file" 
elif [ -d "$filename" ] ; then 

echo "$filename is a directory" 
else 

echo "I have no idea what $filename is" 
fi 

Table 3-1 shows examples of tests you can perform on files, strings, and variables. 



Table 3-1: Operators for Test Expressions 



Operator 



Test Being Performed 



-a file 
-b file 



Check whether the file exists (same as -e) 
Check whether the file is a special block device 



Continued 
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Table 3-1: 


Operators 


for Test Expressions (continued) 




Operator 




Test Being Performed 




- c file 




Check whether the file is a character special device 




-d file 




Check whether the file is a directory 




- e file 




Check whether the file exists (same as - a) 




-f file 




Check whether the file exists and is a regular file (for example, 
not a directory, socket, pipe, link, or device file) 




-g file 




Check whether the file has the set-group-id bit set 




-h file 




Check whether the file is a symbolic link (same as -L) 




-k file 




Check whether the file has the sticky bit set 




-L file 




Check whether the file is a symbolic link (same as -h) 




-n strin 


g 


Check whether the string length is greater than bytes 




-0 file 




Check whether you own the file 




-p file 




Check whether the file is a named pipe 




- r file 




Check whether the file is readable by you 




-s file 




Check whether the file exists and is larger than bytes 




-S file 




Check whether the file exists and is a socket 




-t fd 




Check whether the file descriptor is connected to a terminal 




-u file 




Check whether the file has the set-user-id bit set 




-w file 




Check whether the file is writable by you 




-x file 




Check whether the file is executable by you 




-z strin 


g 


Check whether the length of the string is (zero) bytes 




exprl - a 


expr2 


Check whether both the first and the second expressions are true 




exprl - o 


expr2 


Check whether either of the two expressions is true 




filel -n 


t file2 


Check whether the first file is newer than the second file (using 
the modification timestamp) 




filel -o 


t file2 


Check whether the first file is older than the second file (using 
the modification timestamp) 
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Table 3-1: Operators for Test Expressions (continued) 



Operator 


Test Being Performed 


filel 


-ef file2 


Check whether the two files are associated hy a link (a hard link 
or a symbolic link) 


varl 


= var2 


Check whether the first variable is equal to the second variable 


varl 


-eq var2 


Check whether the first variable is equal to the second variable 


varl 


-ge var2 


Check whether the first variable is greater than or equal to the 
second variable 


varl 


-gt var2 


Check whether the first variable is greater than the second variable 


varl 


-le var2 


Check whether the first variable is less than or equal to the second 
variable 


varl 


-It var2 


Check whether the first variable is less than the second variable 


varl 
varl 


! = var2 
-ne var2 


Check whether the first variable is not equal to the second variable 



Another frequently used construct is the case command. Using the case statement, 
you can test for different cases and take an action based on the result. Similar to a 
switch statement in programming languages, case statements can take the place 
of several nested if statements. 

case "$VAR" in 
stringl) 

{ actionl } ; ; 
string2 ) 

{ action2 } ; ; 
*) 

{ default action } ; ; 



You can find examples of case usage in the system start-up scripts (initscripts) found in 
the /etc/init.d/ directory. Each initscript takes actions based on what parameter was 
passed to it (start, stop, and so on) and the selection is done via a large case construct. 

The bash shell also offers standard loop constructs, illustrated by a few examples that follow. 
In the first example, all the values of the NUMBER variable (0 through 9) appear on the 
for line: 

for NUMBER in 0123456789 
do 

echo The number is $NUMBER 
done 
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In the following examples, the output from the Is command (a list of files) provides 
the variables that the for statement acts on: 

for FILE in N /bin/Is"; do echo $FILE; done 

Instead of feeding the whole list of values to a for statement, you can increment a value 
and continue through a while loop until a condition is met. In the following example, VAR begins as 
and the while loop continues to increment until the value of VAR becomes 3: 

"VAR=0" 

while [ $VAR -It 3 ] ; do 

echo $VAR 

VAR=$[$VAR+1] 
done 

Another way to get the same result as the while statement just shown is to use the 
until statement, as shown in the following example: 

"VAR=0" 

until [ $VAR -eq 3 ] ; do echo $VAR; VAR= $ [ $ VAR+ 1 ] ; done 

If you are just starting with shell programming, refer to the Bash Guide for Beginners 
(http: //tldp. org /LDP /Bash-Beginners -Guide /html /index. html). Use that 
guide, along with reference material such as the bash man page, to step through many 
examples of good shell scripting techniques. 



Summary 



Despite improvements in graphical user interfaces, the shell is still the most common 
method for power users to work with Linux systems. The Bourne Again Shell (bash) is 
the most common shell used with Linux. It includes many helpful features for recalling 
commands (history), completing commands, assigning aliases, and redirecting output 
from and input to commands. You can make powerful commands of your own using 
simple shell scripting techniques. 
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Working with Files 



Everything in a Linux file system can be viewed 
as a file. This includes data files, directories, 
devices, named pipes, links, and other types of 
files. Associated with each file is a set of informa- 
tion that determines who can access the file and 
how they can access it. This chapter covers many 
commands for exploring and working with files. 



Understanding File Types 

Directories and regular files are by far the file 
types you will use most often. However, there are 
several other types of files you will encounter as 
you use Linux. From the command line, there are 
many ways you can create, find, and list different 
types of files. 



IN THIS CHAPTER 

Setting permissions 

Traversing the file 
system 

Creating and copying 
files 

Using hard and 
symbolic links 

Changing file 
attributes 

Searching for files 

Listing and verifying 
files 



Files that provide access to the hardware compo- 
nents on your computer are referred to as device 

files. There are character and block devices. There are hard links and soft links 
you can use to make the same file accessible from different locations. Less 
often used directly by regular users are named pipes and sockets, which pro- 
vide access points for processes to communicate with each other. 



Using Regular Files 



Regular files consist of data files (documents, music, images, archives, 
and so on) and commands (binaries and scripts). You can determine the 
type of a file using the file command. In the following example, you 
change to the directory containing bash shell documentation and use the 
file command to view some of the file types in that directory: 

$ cd /usr/share/doc/packages/grof f / 
$ file * 

BUG-REPORT: ASCII English text 
ChangeLog: ISO-8859 English text 
ChangeLog.jp: ISO-8859 C program text 
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COPYING: ASCII English text 

examples: directory 

gnu.png: PNG image data, 213 x 177, 4-bit grayscale, non-interlaced 

grnexmpl.ps: PostScript document text conforming at level 3.0 

pic.ms: troff or preprocessor input text 

pic.ps: PostScript document text conforming at level 3.0 



The file command that was run shows document files about the groff publishing 
and formatting of different formats. It can look inside the files and determine that 
a file contains text with troff markup (used in man pages and old Unix documenta- 
tion), PostScript that can be sent directly to a printer, plain text, or HTML (web 
page) markup. There is even a subdirectory shown (examples). The file command 
isn't perfect. In this example, the file command did not guess correctly for the file 
ChangeLog . j p, which contains English and Japanese text of comments on what 
changed between releases. It does not contain C source code. In most cases, though, 
the file command is surprisingly accurate. 

Creating regular files can be done by any application that can save its data. If you just 
want to create some blank files to start with, there are many ways to do that. Here are two 
examples: 

$ touch /tmp/newf ile.txt Create a blank file 
$ > /tmp/newf ile2.txt Create a blank file 

Doing a long list on a file is another way to determine its file type. For example: 

$ Is -1 /tmp/newf ile2 .txt List a file to see its type 

-rw-r--r-- 1 chris users Sep 5 14:19 newfile2 

A dash in the first character of the 10-character permission information (-rw-r— r— ) 
indicates that the item is a regular file. (Permissions are explained in the "Setting File 
and Directory Permissions" section later in this chapter.) Commands are also regular 
files, but are saved as executables. Here are some examples: 

$ Is -1 /usr/bin/card 

-rwxr-xr-x 1 root root 8145 2007-09-22 18:34 /usr/bin/card 

$ file /usr/bin/card 

/usr/bin/card: Bourne shell script text 

$ file /bin/Is 

/bin/Is: ELF 32-bit LSB executable, Intel 80386, version 1 (SYSV) , for GNU/Linux 
2.6.4, dynamically linked (uses shared libs), stripped 

You can see that the card command is executable by the x settings for owner, group, 
and others. By running file on card, you can see that it is a shell script. That's opposed 
to a binary executable, such as the Is command indicated above. 
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Using Directories 



A directory is a container for files and subdirectories. Directories are set up in a hierar- 
chy from the root (/) down to multiple subdirectories, each separated by a slash (/). 
Directories are called folders when you access them from graphical file managers. 

To create new directories for storing your data, you can use the mkdir command. Here 
are examples of using mkdir to create directories in different ways: 

$ mkdir /tmp/new Create "new" directory in /tmp 

$ mkdir -p /tmp/a/b/c/new Create parent directories as needed for "new" 

$ mkdir -m 700 /tmp/new2 Create new2 with drwx permissions 

The first mkdir command simply adds the new directory to the existing /tmp direc- 
tory. The second example creates directories as needed (subdirectories a, b, and c) to 
create the resulting new directory. The last command adds the -m option to set direc- 
tory permissions as well. 

You can identify the file as a directory because the first character in the 10-character permis- 
sion string for a directory is a d: 

$ file /tmp/new 

/tmp/new: directory 
$ Is -Id /tmp/new 

drwxr-xr-x 2 chris users 4096 2007-09-29 11:42 /tmp/new 

Another thing to notice about directories is that the execute bits (x) must be on, if you 
want people to be able to use the directory as their current directories. 

Using Symbolic and Hard Links 

Instead of copying files and directories to different parts of the file system, links can 
be set up to access that same file from multiple locations. Linux supports both soft links 
(usually called symbolic links) and hard links. 

When you try to open a symbolic link which points to a file or change to one that points 
to a directory, the command you run acts on the file or directory that is the target of that 
link. The target has its own set of permissions and ownership that you cannot see from 
the symbolic link. The symbolic link can exist on a different disk partition than the tar- 
get. In fact, the symbolic link can exist, even if the target doesn't. 

A hard link, by contrast, can only be used on files (not directories) and is basically a 
way of giving multiple names to the same physical file. Every physical file has at least 
one hard link, which is commonly thought of as the file itself. Any additional names 
(hard links) that point to that single physical file must be on the same partition as the 
original target file (in fact, one way to tell that files are hard links is that they all have 
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the same inode number). Changing permissions, ownership, date/time stamps, or 
content of any hard link to a file results in all others being changed as well. However, 
deleting one link will not remove the file; it will continue to exist until the last link to 
the file is deleted. 

Here are some examples of using the In command to create hard and symbolic links: 

$ touch myfile 

$ In myfile myf ile-hardlink 

$ In -s myfile myf ile-symlink 

$ Is -li myfile* 

292007 -rw-r--r— 2 caen users 2007-09-29 11:51 myfile 

292007 -rw-r-r-- 2 caen users 2007-09-29 11:51 myf ile-hardlink 

292008 lrwxrwxrwx 1 caen users 6 2007-09-29 11:51 myf ile-symlink -> myfile 

Note that after creating the hard and symbolic link files, we used the Is -li command 
to list the results. The -li option shows the modes associated with each file. You can 
see that myfile and myf ile-hardlink both have the inode number of 2 92 07 (signi- 
fying the exact same file on the hard disk). The myf ile-symlink symbolic link has a 
different inode number. And although the hard link simply appears as a file (-), the 
symbolic link is identified as a link (1) with wide-open permissions. You won't know if 
you can access the file the symbolic link points to until you try it or list the link target. 



Using Device Files 



When applications need to communicate with your computer's hardware, they direct 
data to device files. By convention, device files are stored in the /dev directory. Devices 
are generally divided into block devices (such as storage media) and character devices 
(such as serial ports and terminal devices). 

Each device file is associated with a major number (indicating the type of device) and 
minor number (indicating the instance number of the device). For example, terminal 
(tty) devices are represented by major character device 4, while SCSI hard disks are 
represented by major block device number 8. Here are examples of device files: 

$ Is -1 /dev/ttyO /dev/sdal List character and block special devices 

brw-r 1 root disk 8, 1 2007-09-05 08:34 /dev/sdal 

crw-rw 1 root root 4, 2007-09-05 08:34 /dev/ttyO 

A listing of device names and numbers allocated in Linux is available in SUSE in the 
online manual page for the MAKEDE V command. (You must install the separate makedev 
package to get this command.) Most device files are created automatically for you at 
boot time, based on entries in the /etc/makedev. d directory. So most people never 
create device files manually. However, you can create your own device file using the mknod 
command. Here's an example: 

# mknod /dev/ttyS4 c 4 68 Add device for fifth serial port 
$ Is -1 /dev/ttyS4 List new device file 

crw-r-r-- 1 root root 4, 68 2007-09-29 00:35 /dev/ttyS4 
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Using Named Pipes and Sockets 

When you want to allow one process to send information to another process, you can 
simply pipe ( | ) the output from one to the input of the other. However, to provide a 
presence in the file system from which a process can communicate with other processes, 
you can create named pipes or sockets. Named pipes are typically used for interprocess 
communication on the local system, while sockets can be used for processes to com- 
municate over a network. 

Named pipes and sockets are often set up by applications in the / tmp directory. Here 
are some examples of named pipes and sockets: 

$ Is -1 /tmp/.TV-chris/tvtimefifo-local /tmp/ .Xll-unix/XO 

prw 1 chris chris 2007-09-29 /tmp/.TV-chris/tvtimefifo-local 

srwxrwxrwx 1 root chris 2007-09-29 01:30 /tmp/ .Xll-unix/XO 

The first listing is a named pipe set up by the tvtime TV card player (note the p at 
the beginning indicating a named pipe). The second listing is a socket set up by the 
X GUI for interprocess communications. 

To create your own named pipe, use the mkf if o command as follows: 

$ mkfifo mypipe 
$ Is -1 mypipe 

prw-rw-r-- 1 chris users 2007-09-29 00:57 mypipe 

Unless you are developing applications, you probably won't need to create named 
pipes. If you want to find where named pipes and sockets exist on your system, you 
can use the -type option to the find command, as described later in this chapter. 

Setting File and Directory Permissions 

The ability to access files, run commands, and change to a directory can be restricted 
with permission settings for user, group, and other users. When you do a long list 
(is -1) of files and directories in Linux, the beginning 10 characters shown indicate 
what the item is (file, directory, block device, and so on) along with whether or not 
the item can be read, written, or executed. Figure 4-1 illustrates the meaning of those 
10 characters. 



421 421 421 

\ I / 

drwxrwxrwx 




file type 
indicator 

other 

Figure 4-1: Read, write, and 
execute permissions are set 
for files and directories. 
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To follow along with examples in this section, create a directory called / tmp/ test and a 
file called /tmp/ test /hello, txt. Then do a long listing of those two items, as follows: 

$ mkdir /tmp/test 

$ echo "some text" > /tmp/test/hello.txt 

$ Is -Id /tmp/test/ /tmp/test/hello.txt 

drwxr-xr-x 2 francois sales 4096 2007-09-29 13:11 /tmp/test 
-rw-r-r- 2 francois sales 10 2007-09-29 13:11 /tmp/test/hello.txt 

After creating the directory and file, the first character of the long listing shows 
/tmp/test as a directory (d) and hello . txt as a file (-). Other types of files avail- 
able in Linux that would appear as the first character include character devices (c), 
block devices (b) or symbolic links (1), named pipes (p), and sockets (s). 

The next nine characters represent the permissions set on the file and directory. The 
first rwx indicates that the owner (francois) has read, write, and execute permissions 
on the directory. The group sales and all other users have only read and execute per- 
missions (r-x); the dash indicates the missing write permission. For the hello . txt 
file, the user has read and write permissions (rw-) and members of the group and 
others have read permission (r--). 

When you set out to change permissions, each permission can be represented by an 
octal number (where read is 4, write is 2, and execute is 1) or a letter (rwx). Generally 
speaking, read permission lets you view the contents of the directory, write lets you 
change (add or modify) the contents of the directory, and execute lets you change to 
(in other words, access) the directory. 

If you don't like the permissions you see on files or directories you own, you can 
change those permissions using the chmod command. 

Changing Permissions with chmod 

The chmod command lets you change the access permissions of files and directories. Table 4-1 
shows several chmod command lines and how access to the directory or file changes. 



Table 4-1: Changing Directory and File Access Permissions 



chmod 


Original 


New 


Description 


command 


Permission 


Permission 




(octal or 








letters) 








chmod 0700 


any 


drwx 


The directory's owner can read or 
write files in that directory as well as 
change to it. All other users (except 
root) have no access. 
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Table 4-1: Changing Directory and File Access Permission (continued) 



chmod 


Original 


New 


Description 


command 


Permission 


Permission 




(octal or 








letters) 








chmod 0711 


any 


drwx--x--x 


Same as for the owner. All others can 
change to the directory, but not view 
or change files in the directory. This 
can be useful for server hardening, 
where you prevent someone from 
listing directory contents, but allow 
access to a file in the directory if 
someone already knows it's there. 


chmod go+r 


drwx 


drwxr - - r- - 


Adding read permission to a direc- 
tory may not give desired results. 
Without execute on, others can't 
view the contents of any files in that 
directory. 


chmod 07 77 


any 


drwxrwxrwx 


All permissions are wide open. 


chmod a=rwx 








chmod 0000 


any 


d 


All permissions are closed. Good 
to protect a directory from errant 


chmod a-rwx 






changes. However, backup pro- 
grams that run as non-root may fail 
to backup the directory's contents. 


chmod 66 6 


any 


-rw-rw-rw- 


Open read/write permissions com- 
pletely on a file. 


chmod go-rw 


-rw-rw-rw- 


- rw 


Don't let anyone except the owner 
view, change, or delete the file. 


chmod 644 


any 


- rw- r - - r - - 


Only the owner can change or delete 
the file, but all can view it. 



The first in the mode line can usually be dropped (so you can use 777 instead of 
0777). That placeholder has special meaning. It is an octal digit that can be used on 
commands (executables) to indicate that the command can run as a set-UID program 
(4), run as a set-GID program (2), or become a sticky program (1). With set-UID and 
set-GID, the command runs with the assigned user or group permissions (instead of 
running with permission of the user or group that launched the command). 



WARNING! SUID should not be used on shell scripts. Here is a warning from 
the Linux Security HOWTO: "SUID shell scripts are a serious security risk, and 
for this reason the kernel will not honor them. Regardless of how secure you think 
the shell script is, it can be exploited to give the cracker a root shell. " 
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Having the sticky bit on for a directory keeps users from removing or renaming files 
from that directory that they don't own (/tmp is an example). Given the right permis- 
sion settings, however, users can change the contents of files they don't own in a sticky 
bit directory. The final permission character is t instead of x on a sticky directory. A 
command with sticky bit on used to cause the command to stay in memory, even while 
not being used. This is an old Unix feature that is not supported in Linux. 

The -R option is a handy feature of the chmod command. With -R, you can recursively 
change permissions of all files and directories starting from a point in the file system. Here are some 
examples: 

# chmod -R 700 /tmp/test Open permission only to owner below /tmp/test 

# chmod -R 000 /tmp/test Close all permissions below /tmp/test 

# chmod -R a+rwx /tmp/test Open all permissions to all below /tmp/test 

Note that the -R option is inclusive of the directory you indicate. So the permissions 
above, for example, would change for the / tmp/test directory itself, and not just for 
the files and directories below that directory. 



Setting the umask 



Permissions given to a file or directory are assigned originally at the time that item 
is created. How those permissions are set is based on the user's current umask value. 
Using the umask command, you can set the permissions given to files and directories when 
you create them. 

$ umask 0066 Make directories drwx--x--x and files -rw 

$ umask 0077 Make directories drwx and files -rw 

$ umask 0022 Make directories drwxr-xr-x and files -rw-r--r-- 

$ umask 0777 Make directories d and files 

The default on SUSE for users is 0022. 

Changing Ownership 

When you create a file or directory, your user account is assigned to that file or direc- 
tory. So is your primary group. As root user, you can change the ownership (user) and group 
assigned to a file to a different user and/or group using the chown and chgrp commands. Here 
are some examples: 

# chown chris test/ Change owner to chris 

# chown chris :market test/ Change owner to chris and group to market 

# chgrp market test/ Change group to market 

# chown -R chris test/ Change all files below test/ to owner chris 

The recursive option to chown (-R) just shown is useful if you need to change the own- 
ership of an entire directory structure. As with chmod, using chown recursively changes 
permissions for the directory named, along with its contents. You might use chown 
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recursively when a person leaves a company or stops using your web service. You can 
use chown -R to reassign their entire /home directory to a different user. 

Related commands for changing group assignments and passwords include newgrp 
and gpasswd, as well as the /etc/gshadow file. 



Traversing the File System 



Basic commands for changing directories (cd), checking the current directory (pwd) 
and listing directory contents (Is) are well known to even casual shell users. So this sec- 
tion focuses on some less-common options to those commands, as well as other lesser- 
known features for moving around the file system. Here are some quick examples of 
cd for moving around the file system: 

$ cd Change to your home directory 

$ cd $HOME Change to your home directory 

$ cd ~ Change to your home directory 

$ cd -francois Change to francois ' home directory 

$ cd - Change to previous working directory 

$ cd $OLDPWD Change to previous working directory 

$ cd ~/public_html Change to public_html in your home directory 

$ cd . . Change to parent of current directory 

$ cd /usr/bin Change to usr/bin from root directory 

$ cd usr/bin Change to usr/bin beneath current directory 

If you want to find out what your current directory is, use pwd (print working directory): 

$ pwd 

/home /franco is 

Creating symbolic links is a way to access a file from other parts of the file system (see 
the section "Using Symbolic and Hard Links" earlier in the chapter for more informa- 
tion on symbolic and hard links). However, symbolic links can cause some confusion 
about how parent directories are viewed. The following commands create a symbolic link 
to the / tmp directory from your home directory and show how to tell where you are 
related to a linked directory: 

$ cd $HOME 

$ In -s /tmp tmp-link 

$ Is -1 tmp-link 

lrwxrwxrwx 1 francois users 2007-09-29 12:41 tmp-link -> /tmp 

$ cd tmp-link/ 

$ pwd 

/home /francois /tmp- link 

$ pwd -P 

/tmp 

$ pwd -L 

/home /francois /tmp-link 

$ cd -L . . 
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$ pwd 

/ home / f r anc o i s 

$ cd tmp-link 

$ cd -P . . 

$ pwd 

/ 

Using the -P and -L options to pwd and cd, you can work with symbolically linked directories 
in their permanent or link locations, respectively. For example, cd -L . . takes you up one 
level to your home directory, while cd -P . . takes you up one level above the per- 
manent directory (/). Likewise, -P and -L options to pwd show permanent and link 
locations. 

Bash can remember a list of working directories. Such a list can be useful if you want 
to return to previously visited directories. That list is organized in the form of a stack. 
Use pushd and popd to add and remove directories to bash's list: 

$ pwd 

/ home / f r anc o i s 

$ pushd /usr/share/man/ 

/usr/share/man ~ 
$ pushd /var/log/ 

/var/log /usr/share/man ~ 
$ dirs 

/var/log /usr/share/man ~ 
$ dirs -v 

/var/log 

1 /usr/share/man 

2 ~ 

$ popd 

/usr/share/man ~ 
$ pwd 

/usr/share/man 
$ popd 

$ pwd 

/home/francois 

The dirs, pushd, and popd commands can also be used to manipulate the order 
of directories on the stack. For example, pushd -0 pushes the last directory on the 
stack to the top of the stack (making it the current directory). The pushd -2 com- 
mand pushes the third directory from the bottom of the stack to the top. 



Copying Files 



Provided you have write permission to the target directory, copying files and directo- 
ries can be done with some fairly simple commands. The standard cp command will 
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copy a file to a new name or the same name in a new directory, with a new time stamp associated 
with the new file. Other options to cp let you retain date/time stamps, copy recursively, 
and prompt before overwriting. Here are some examples: 

# cd ; touch index.html 

# mkdir /tmp/html 

# cp -i index.html /tmp/html/ 

# cp -il index.html /tmp/html 

# cp -a /tmp/html /mnt/sdal/var/www/ 

# cp -R /tmp/html /mnt/sdal/var/www/ 

In the first cp example above, if an index . html file exists in / tmp/html, you are 
prompted before overwriting it with the new file. In the next example, the index . html 
file is hard-linked to a file of the same name in the / tmp/html directory. In that case, 
because both hard links point to the same file, editing the file from either location will 
change the contents of the file in both locations. (The link can only be done if /tmp/html 
and your home directory are in the same file system.) 

The cp -a command copies all files below the /tmp/html directory, retaining all 
ownership and permission settings. If, for example, /mnt/sdal represented a USB 
flash drive, that command would be a way to copy the contents of your web server 
to that drive. The -R option also recursively copies a directory structure, but assigns 
ownership to the current user and adds current date /time stamps. 

The dd command is another way to copy data. This command is very powerful because 
on Linux systems, everything is a file, including hardware peripherals. Here is an 
example: 

$ dd if=/dev/zero of =/tmp/mynullf ile count=l 

1+0 records in 

1+0 records out 

512 bytes (512 B) copied, 0.000308544 s, 1.7 MB/s 

/dev/zero is a special file that generates null characters. In the example just shown, 
the dd command takes /dev/zero as input file and outputs to /tmp/mynullf ile. The 
count is the number of blocks. By default, a block is 512 bytes. The result is a 512-bytes- 
long file full of null characters. You could use less or vi to view the contents of the 
file. However, a better tool to view the file would be the od (Octal Dump) command: 

$ od -vt xl /tmp/mynullf ile View an octal dump of a file 

Here's another example of the dd command: 

$ dd if=/dev/zero of =/tmp/mynullf ile count=10 bs=2 

10+0 records in 

10+0 records out 

20 bytes (20 B) copied, 8.1254e-05 s, 246 kB/s 
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This time, we set the block size to 2 bytes and copied 10 blocks (20 bytes). The follow- 
ing command line clones the first partition of the primary master IDE drive to the second partition 
of the primary slave IDE drive (back up all data before trying anything like this): 

# dd if=/dev/hdal of=/dev/hdb2 

The next example makes a compressed backup of the first partition of the primary master 
IDE drive. Typically the partition should be unmounted before a backup such as this. 

# umount /dev/hdal 

# dd if=/dev/hdal | gzip > bootpart.gz 

The following command copies a Windows program to boot SUSE from an auto-run 
CD-ROM (openSUSE10_3_LOCAL . exe) from a SUSE installation CD to your USB 
flash drive (assuming the drive appears as /dev/sda): 

# dd if=openSUSE10_3_LOCAL.exe of=/dev/sda 

This next example copies the Master Boot Record from the primary master IDE hard 
drive to a file named mymbrf ile: 

# dd if=/dev/hda of =mymbrf ile bs=512 count=l 

If you want to make a copy of the ISO image that was burned to a CD or DVD, insert 
that medium into your CD/DVD drive and (assuming /dev/cdrom is associated with 
your computer's CD drive) type the following command: 

# dd if =/dev/cdrom of =whatever.iso 

NOTE SUSE creates links /dev/cdrw, /dev/dvd, and /dev/cdrom as appro- 
priate, based on your system's hardware. 



Changing File Attributes 



Files and directories in Linux file systems all have read, write, and execute permissions 
associated with user, group, and others. However, there are also other attributes that 
can be attached to files and directories that are specific to certain file system types. 

Files on ext2 and ext3 file systems have special attributes that you may choose to use. 
You can list these attributes with the lsattr command. Most attributes are obscure and not 
turned on by default. Here's an example of using lsattr to see some files' attributes: 

# lsattr /etc/host* 

/etc/host . conf 

/etc/hosts 

/etc/hosts .allow 

/etc/hosts .deny 

/etc/hosts .equiv 
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/etc/hosts . lpd 

/etc/hosts. YaST2save 

$ lsattr -aR /tmp/ | less Recursively list all /tmp attributes 

The dashes represent 13 ext2/ext3 attributes that can be set. None are on by default. 
Those attributes are the following: a (append only), c (compressed), d (no dump), 
i (immutable), j (data journalling), s (secure deletion), t (no tail-merging), u 
(undeletable), A (no atime updates), D (synchronous directory updates), S (synchro- 
nous updates), and T (top of directory hierarchy). You can change these attributes using 
the chattr command. Here are some examples: 

# chattr +i /etc/grub. conf 

$ chattr +A -R /home/francois/images/* 
$ chattr +d FC6-livecd.iso 

# lsattr /etc /grub. conf /home/francois/images/* openSUSE-10.3-RCl-KDE-i386.iso 

i /etc/grub. conf 

A /home/francois/images/einstein. jpg 

A /home/francois/images/goth. jpg 

d openSDSE-10.3-RCl-KDE-i3 86.iso 

As shown in the preceding example, with the +i option set, the grub . conf file becomes 
immutable, meaning that it can't be deleted, renamed, or changed, or have a link created 
to it. Here, this prevents any arbitrary changes to the grub . conf file. (Not even the root 
user can change the file until the i attribute is gone.) 

The -R option in the example recursively sets the +A option, so all files in the images 
directory and below can't have access times (a time record) modified. Setting A attrib- 
utes can save some disk I/O on laptops or flash drives. If you use the dump command 
to back up your ext2/ext3 file systems, the +d option can prevent selected files from 
being backed up. In this case, we chose to not have a large ISO image backed up. 

To remove an attribute with chatter, use the minus sign (-). For example: 

# chattr -i /etc/grub. conf 

NOTE Crackers who successfully break into a machine will often replace some sys- 
tem binaries (such as Is or ps) with corrupt versions and make them immutable. 
It's a good idea to occasionally check the attributes set for your executables (in /bin, 
/usr/bin, / shin, and /usr /sbin, for example). 



Searching for Files 



SUSE keeps a database of all the files in the file system (with a few exceptions defined 
in /etc/ /sysconf ig/locate) using features of the findutils-locate package. The 
locate command allows you to search that database. The results come back instantly, 
since the database is searched and not the actual file system. Before locate was avail- 
able, most Linux users ran the find command to find files in the file system. Both 
locate and find are covered here. 
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NOTE To get these commands and files, install the findutils-locate package. Then, 
run the updatedb command to set up the database used by the locate command. 



Finding Files with locate 



Because the database contains the name of every node in the file system, and not just 
commands, you can use locate to find commands, devices, man pages, data files, or anything else 
identified by a name in the file system. Here is an example: 

$ locate elOO 

/lib/modules/2 .6.22 . 5-29-default/kernel/drivers/net/el000 
/lib/modules/2 .6.22 . 5 -2 9 -default /kernel /drivers /net /elOOOe 
/lib/modules/2 .6.22 . 5 -2 9 -default /kernel /drivers /net /el000/el0 00 .ko 
/lib/modules/2 .6.22 . 5 -2 9 -default /kernel /drivers /net /elOOOe/elOOOe.ko 
/lib/modules/2 .6.22 . 5 -2 9 -default /kernel /drivers /net /elOO .ko 
/usr/share/cups/model/gutenprint/stp-escp2-el00 .5.0 .ppd.gz 
/usr/share/cups/model/gutenprint/stp-escp2-el00 .5.0. sim. ppd.gz 

The above example found the elOO.ko, elOOOe.ko, and elOOO.ko kernel modules, locate 
is case sensitive unless you use the -i option. Here's an example: 

$ locate -i itco_wdt 

/lib/modules/2 .6.22. 5 -2 9 -default /kernel /drivers /char /watchdog/ iTCO_wdt .ko 

Here are some examples using locate with regular expressions: 

$ locate -r /ls$ Locate files ending in /ls$ 

/bin/Is 

/opt /kde3/ share/ locale/ 110n/ Is 

/usr/ share/ locale/ 11 On/ Is 

$ locate -r A /boot/grub/me Locate files beginning with /boot/grub/me 

/boot/grub/menu. 1st 

The findutils-locate RPM package (or slocate on some Linux distributions) includes a 
cron job that runs the updatedb command once per day to update the locate database 
of files. Because the file you want may have been removed since the database was last 
updated, you can use the locate -e option to check if the file found in the database still exists: 

$ locate -e myfilename 

To update the locate database immediately, you can run the updatedb command manually: 

# updatedb 



Locating Files with find 



Before the days of locate, the way to find files was with the find command. Although 
locate will come up with a file faster, find has many other powerful options for find- 
ing files based on attributes other than the name. 
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NOTE Searching the entire file system can take a long time to complete. Before 
searching the whole file system, consider searching a subset of the file system or 
excluding certain directories or remotely mounted file systems. 

This example searches the root file system (/) recursively for files named el 0: 

$ find / -name "elOO*" -print 

find: /etc/skel/Documents : Permission denied 
find: /etc/audispd: Permission denied 
/sys /module /el 00 
/ sys /module /mi i /holders /el 00 

Running find as a normal user can result in long lists of Permission denied as 
find tries to enter a directory you do not have permissions to. You can filter out the 
inaccessible directories: 

$ find / -name elOO -print 2>&1 | grep -v "Permission denied" 

Or send all errors to the /dev/null bit bucket: 

$ find / -name elOO -print 2> /dev/null 

Because searches with find are case sensitive and must match the name exactly (elOO 
won't match elOO.ko), you can use regular expressions to make your searches more inclusive. Here's 
an example: 

$ find / -name 'elOO*' -print 

/lib/modules/2 .6.22 . 5-29-default/kernel/drivers/net/el000 

/ lib/modules 12 .6.22 . 5-2 9-default /kernel /drivers/net /elO 00 /elOOO .ko 

/lib/modules/2 .6.22 . 5-29-default/kernel/drivers/net/el000e 

/lib/modules/2 .6.22 . 5-29-default /kernel /drivers/net /el0 00e/el0 00e .ko 

/lib/modules/2 .6.22 . 5-29-default /kernel /drivers /net /elOO .ko 

/sys /module /el 00 

/ sys /module /mi i /holders /el 00 

/ sy s /bus /pci/ drivers /el 00 

You can also find files based on timestamps. This command line finds files in /usr/bin/ 
that have been accessed in the past two minutes: 

$ find /usr/bin/ -amin -2 -print 

/usr/bin/ 
/usr/bin/f ind 

This finds files that have not been accessed in /home/chris for more than 60 days: 

$ find /home/chris/ -atime +60 

Use the -type d option to find directories. The following command line finds all direc- 
tories under /etc and redirects stderr to the bit bucket (/dev/null): 

$ find /etc -type d -print 2> /dev/null 
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This command line finds files in /sbin with permissions that match 750: 
$ find /sbin/ -perm 750 -print 

The exec option to find is very powerful, because it lets you act on the files found with 
the find command. The following command finds all the files in /var owned by the user 
f rancois (must be a valid user) and executes the Is -1 command on each one: 

$ find /var -user f rancois -exec Is -1 {} \; 

An alternative to the find command's exec option is xargs: 

$ find /var -user francois -print | xargs Is -1 

There are big differences on how the two commands just shown operate, leading to 
very different performance. The find -exec spawns the command Is for each result 
it finds. The xargs command works more efficiently by passing many results as input 
to a single Is command. 

To negate a search criteria, place an exclamation point ( ! ) before that criteria. The next 
example finds all the files that are not owned by the group root and are regular files, 
and then does an 1 s - 1 on each: 

$ find / ! -group root -type f -print 2> /dev/null | xargs Is -1 

The next example finds the files in / sbin that are regular files and are not executable 
by others, then feeds them to an Is -1 command: 

$ find /sbin/ -type f ! -perm /o+x -print | xargs Is -1 

-rwxr-x 1 root root 18372 2007-09-21 17:06 /sbin/acpid 

-rwxr-x 1 root root 9996 2007-09-21 16:51 /sbin/audispd 



Finding files by size is a great way to determine what is filling up your hard disks. The fol- 
lowing command line finds all files that are greater than 10MB (+10M), lists those files 
from largest to smallest (is -IS) and directs that list to a file (/tmp/bigf iles . txt): 

$ find / -xdev -size +10M -print | xargs Is -IS > /tmp/bigf iles. txt 

In this example, the -xdev option prevents any mounted file systems, besides the root 
file system, from being searched. This is a good way to keep the find command from 
searching the /proc directory and any remotely mounted file systems, as well as other 
locally mounted file systems. You may also want to run this command as root. 
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Using Other Commands to Find Files 

Other commands for finding files include the whereis and which commands. Here 
are some examples of those commands: 

$ whereis man 

man: /usr/bin/man /usr/bin/Xll/man /usr/local/man /usr/share/man 
/us r/ share /man /man7 /man. 7 .gz /usr/ share /man/manl /man. l.gz 
/usr/share/man/manlp/man. Ip.gz 
$ which Is 

/bin/Is 

The whereis command is useful because it not only finds commands, it also finds man 
pages and configuration files associated with a command. From the example of whereis for the 
word man, you can see the man executable, its configuration file, and the location of 
man pages for the man command. The which example shows where the Is executable 
is (/bin/Is). The which command is useful when you're looking for the actual loca- 
tion of an executable file in your PATH, as in this example: 

$ rpm -qif 'which ps' 



Finding Out More About Files 



Now that you know how to find files, you can get more information about those files. 
Using less common options to the Is command lets you list information about a file that 
you won't see when you run Is without options. Commands such as file help you 
identify a file's type. With md5sum and shalsum, you can verify the validity of a file. 



Listing Files 



Although you are probably quite familiar with the Is command, you may not be 
familiar with many of the useful options for Is that can help you find out a lot about 
the files on your system. Here are some examples of using Is to display long lists (-1) of 
files and directories: 

Files and directories in current directory 

Includes files/directories beginning with dot (.) 

Orders files by time recently changed 

Orders files by time recently accessed 

Orders files by size 

Lists the inode associated with each file 

List numeric user/group IDs, instead of names 

List file sizes in human-readable form (K, M, etc.) 

List files recursively, from current directory and subdirectories 



$ 


Is 


-1 


$ 


Is 


-la 


$ 


Is 


-It 


$ 


Is 


-lu 


$ 


Is 


-IS 


$ 


Is 


-li 


$ 


Is 


-In 


$ 


Is 


-lh 


$ 


Is 


-1R 
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When you list files, there are also ways to have different types of files appear differently in the 
listing: 

$ Is -F Add a character to indicate file type 

ABC@ DEF/ memo . txt pipefile| script. sh* xpid.socket= 

$ Is --color=always Show file types as different colors 

$ Is -C Show file listing in columns 

In the -F example, the output shows several different file types. The ABC© indicates a 
symbolic link to a directory, DEF/ is a regular directory, memo . txt is a regular file (no 
extra characters), pipef ile | is a named pipe (created with mkf if o), script . sh* is 
an executable file, and xpid . socket= is a socket. The next two examples display dif- 
ferent file types in different colors and lists output in columns, respectively. 



Verifying Files 



When files such as software packages and CD or DVD images are shared over the 
Internet, often a SHA1SUM or MD5SUM file is published with it. Those files contain 
checksums that can be used to make sure that the file you downloaded is exactly the 
one that the repository published. 



The following are examples of the md5E 
duce checksums of files: 



i and shalsum commands being used to pro- 



$ md5sum openSUSE-10.3-RCl-KDE-i386.iso 

54881969da026da24a92db4aabldcc69 

FC-6-i3 86-rescuecd.isoopenSUSE-10.3-RCl-KDE-i3 86.iso 

$ shalsum openSUSE-10.3-RCl-KDE-i386.iso 

834fd7 61b9c0a5dc550dl0d973 07dac998103a68 openSUSE-10.3-RCl-KDE-i386.iso 

Which command you choose depends on whether the provider of the file you are 
checking distributed md5sum or shalsum information. For example, here is what the 
MD5SUMS file for the openSUSE 10.2 distribution looks like: 



a7elb53 48292f986997bl3212a69e82 8 openSUSE-10 

dl35d66d2a21ef0ab3ea9d2d904ed5cl openSUSE-10 

f9677 60d710a06fbdfcefe00a759 666b openSUSE-10 

Ie5eef577c56f4 893e93ac4eflb0c85 8 openSUSE-10 

f680fb2a50ae6fb64f41c93f49 8db5ba openSUSE-10 

bd73a89fd3d3 97 62 8c0d3a0a2e222 937 openSUSE-10 

35dee66218e4814fea465a571773 56d5 openSUSE-10 

19fl7blf3fc95bfd3e4eeed9ffbl2 0d5 openSUSE-10 

9fb3e81f48bf88bca02cd8653243a7c7 openSUSE-10 

C2 7ac7 0db02d6ac01223 9143 Ibbf 223d openSUSE-10 

6a2b2edf853b3 8 03 5115740a3c312f5e openSUSE-10 

0607dab7cb5a9a7 6b56bb41b956cc953 openSUSE-10 

3cc2 8f4cee9b85a675c91aall62 59ee6 openSUSE-10 



. 2-GM-Addon-Lang-i386 . iso 

. 2-GM-Addon-Lang-ppc .iso 

. 2-GM-Addon-Lang-x86_64. iso 

. 2-GM-Addon-NonOSS-BiArch. iso 

. 2 -GM- Addon-NonOSS-ppc .iso 

.2-GM-i386-CDl.iso 

.2-GM-i386-CD2.iso 

.2-GM-i386-CD3.iso 

.2-GM-i386-CD4.iso 

.2-GM-i386-CD5.iso 

. 2-GM-i3 86-mini . iso 

. 2-GM-ppc-CDl.iso 

. 2-GM-ppc-CD2.iso 
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7c9ed9888673efce4722140d9 0b2c4cl openSUSE-10 

a0c2b637d92 07 00al7ece67c91ae3 83 5 openSUSE-10 

727e2 58bcbl3aa84991cdfe5bc3 3bf95 openSUSE-10 

e2bfc4eae0cf57 60 993a6cdad9d4cd2c openSUSE-10 

94d6c77 8f453 51f7 6a2 6ffa5be4f5c8 openSUSE-10 

a3 67123ec9d24e3b249800990cc4b810 openSUSE-10 

C29e24d912f9a32ed0b603adlae2 55f5 openSUSE-10 

C3f02198ff296 804159af52 92 0a017 0c openSUSE-10 

If32fec421e3 57 60 0efbd6c531cl758a openSUSE-10 

6cb8al24aa6a24c43f784011d322 5046 openSUSE-10 



. 2-GM-ppc-CD3 . iso 
. 2-GM-ppc-CD4.iso 
. 2-GM-ppc-CD5.iso 
. 2-GM-ppc-mini . iso 
. 2-GM-x86_64-CDl.iso 
. 2-GM-x86_64-CD2 .iso 
. 2-GM-x86_64-CD3 .iso 
. 2-GM-x86_64-CD4.iso 
. 2-GM-x86_64-CD5.iso 
. 2-GM-x86_64-mini . iso 



With all the ISO files listed in this SHA1SUM file contained in the current directory, 
you can verify them all at once using the -c option to shalsum. Here is an example if you 
had a file of SHA1 checksums: 

$ shalsum -c SHA1SUM 

openSUSE-10.2-GM-i386-CDl.iso: OK 

openSUSE-10.2-GM-i386-CD2.iso: OK 

openSUSE-10.2-GM-i386-CD3.iso: OK 

openSUSE-10.2-GM-i386-CD4.iso: OK 

openSUSE-10.2-GM-i386-CD5.iso: OK 

To verify only one of the files listed in the SHA1SUM file, you could do something like the 
following: 

$ cat SHA1SUM | grep CD2 | shalsum -c 

openSUSE-10.2-GM-i386-CD2.iso: OK 

If you had an MD5SUM file instead of a SHA1SUM file to check against, you could use 
the md5sum command in the same way. By combining the find command described 
earlier in this chapter with the md5sum command, you can verify any part of your file 
system. For example, here's how to create an MD5 checksum for every file in the /etc directory so 
they can be checked later to see if any have changed: 

# find /etc -type f -exec mdSsum {} \; 2>/dev/null > /tmp/md5.1ist 

The result of the previous command line is a /tmp/md5 .list file that contains a 128-bit 
checksum for every file in the /etc directory. Later, you could type the following com- 
mand to see if any of those files have changed: 

# cd /etc 

# md5sum -c /tmp/md5.1ist | grep -v 'OK' 

. /hosts .allow: FAILED 

md5sum: WARNING: 1 of 1668 computed checksums did NOT match 

As you can see from the output, only one file changed (hosts . allow). So the next 
step is to check the changed file and see if the changes to that file were intentional. 
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Summary 



There are dozens of commands for exploring and working with files in Linux. 
Commands such as chmod can change the permissions associated with a file, while 
commands that include lsattr and chattr can be used to list and change file 
attributes that are associated with ext2 and ext3 file system types. 

To move around the file system, people use the cd command most often. However, 
to move repeatedly among the same directories, you can use the pushd and popd 
commands to work with a stack of directories. 

Copying files is done with the cp command. However, the dd command can be used 
to copy files (such as disk images) from a device (such as a CD-ROM drive). For creat- 
ing directories, you can use the mkdir command. 

Instead of keeping multiple copies of a file around on the file system, you can use 
symbolic links and hard links to have multiple file names point to the same file or 
directory. Symbolic links can be anywhere in the file system, while hard links must 
exist on the same partition that the original file is on. 

To search for files, Linux offers the locate and find commands. To verify the 
integrity of files you download from the Internet, you can use the md5sum and 
shalsum commands. 
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5 

Manipulating Text 



With only a shell available on the first Unix sys- 
tems (on which Linux was based), using those 
systems meant dealing primarily with commands 
and plain text files. Documents, program code, 
configuration files, e-mail, and almost anything 
you created or configured was represented by 
text files. To work with those files, early develop- 
ers created many text manipulation tools. 

Despite having graphical tools for working with 
text, most seasoned Linux users find command 
line tools to be more efficient and convenient. 
Text editors such as vi (Vim), Emacs, JOE, nano, 
and pico are available with most Linux distribu- 
tions. Commands such as grep, sed, and awk 
can be used to find, and possibly change, pieces 
of information within text files. 

This chapter shows how to use many popular 
commands for working with text files in SUSE. 
It also explores some of the less common uses of 
text manipulation commands that you might find 
interesting. 



Matching Text 

with Regular Expressions 

Many of the tools for working with text allow you 
to use regular expressions, sometimes referred to as 
regex, to identify the text you are looking for based 
on some pattern. You can use these strings to find 
text within a text editor or use them with search 
commands to scan multiple files for the strings of 
text you want. 



IN THIS CHAPTER 

Matching text with 
regular expressions 

Editing text files with 
vi, JOE, or nano 

Using graphical text 
editors 

Listing text with cat, 
head, and tail 

Paging text with less 
and more 

Paginating text with pr 

Searching for text 
with grep 

Counting words, 
lines, and characters 
with wc 

Sorting output 
with sort 

Stream editing with 
sed, tr, cut, and awk 

Searching binaries for 
text with strings 

Finding differences in 
files with diff 

Converting text 
files with unix2dos/ 
dos2unix 
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A regex search pattern can include a specific string of text (as in a word such as Linux) 
or a location (such as the end of a line or the beginning of a word). It can also be 
specific (find just the word hello) or more inclusive (find any word beginning with 
h and ending with o). 

Appendix C includes reference information for shell metacharacters that can be used 
in conjunction with regular expressions to do the exact kinds of matches you are look- 
ing for. This section shows examples of using regular expressions with several differ- 
ent tools you encounter throughout this chapter. 

Table 5-1 shows some examples using basic regular expressions to match text strings. 

Many examples of regular expressions are used in examples throughout this chapter. 
Keep in mind that not every command that incorporates regex uses its features the 
same way. 



Table 5-1: Matching Using Regular Expressions 



Expression 


Matches 


a* 


a, ab, abc, and aecjejich 


~a 


Any "a" appearing at the beginning of a line 


*a$ 


Any "a" appearing at the end of a line 


a. c 


Three-character strings that begin with a and end with c 


[bcf ]at 


bat, cat, or fat 


[a-d]at 


aat, bat, cat, dat, but not Aat, Bat, etc. 


[A-D]at 


Aat, Bat, Cat, and Dat, but not aat, bat, etc. 


l[3-5]7 


137, 147, and 157 


\tHello 


A tab character preceding the word Hello 


\. [tT] [xX] [Tt] 


.txt, .TXT, .TxT, or other case combinations 



Editing Text Files 



There are many text editors in the Linux/Unix world. The editor that is most common 
is vi, which can be found virtually on any Unix system available today. That is why 
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knowing how to at least make minor file edits in vi is a critical skill for any Linux admin- 
istrator. One day, if you find yourself in a minimalist, foreign Linux environment trying 
to bring a server back online, vi is the tool that will almost always be there. 

On SUSE, make sure you have the vim-enhanced package installed. Vim (Vi IMproved) 
with the vim-enhanced package will provide the most up-to-date, feature-rich and 
user-friendly vi editor. By default, SUSE just installs the regular vim packages. For 
more details about using vi, refer to Appendix A. 

Traditionally, the other popular Unix text editor has been Emacs and its more 
graphical variant, XEmacs. Emacs is a powerful multi-function tool that can also 
act as a mail /news reader, shell, and perform other functions. Emacs is also known 
for its very complex series of keyboard shortcuts that require three arms to execute 
properly. 

In the mid-90s, Emacs was ahead of vi in terms of features. Now that Vim is widely 
available, both can provide all the text editing features you'll ever need. If you 
are not already familiar with either vi or Emacs, we recommend you start by 
learning vi. 

There are many other command-line and GUI text editors available for Linux. Text- 
based editors that you may find to be simpler than vi and Emacs include JED, JOE, 
and nano. Start any of those editors by typing its command name, optionally fol- 
lowed by the file name you want to edit. The following sections offer some quick 
descriptions of how to use each of those editors. 



Using the JOE Editor 



If you have used classic word processors such as WordStar that worked with text 
files, you might be comfortable with the JOE editor (from the joe package, installed 
by default). To use the spell checker in JOE, install the aspell package. With JOE, 
instead of entering a command or text mode, you are always ready to type. To move 
around in the file, you can use control characters or the arrow keys. To open a text file 
for editing, just type joe and the file name or use some of the following options: 

$ joe memo.txt Open memo, txt for editing 

$ joe -wordwrap memo.txt Turn on wordwrap whiie editing 

$ joe -lmargin 5 -tab 5 memo.txt Set left margin to 5 and tab to 5 

$ joe +25 memo.txt Begin editing on line 25 

To add text, just begin typing. You can use keyboard shortcuts for many functions. Use 
arrow keys to move the cursor left, right, up, or down. Use the Delete key to delete 
text under the cursor or the Backspace to erase text to the left of the cursor. Press 
Enter to add a line break. Press Ctrl+k+h to see the help screen. Table 5-2 shows the 
most commonly used. 
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Table 5-2: Control Keys for Editing with JOE 



Key Combo 


Result 


Cursor 


Ctrl+b 


Left 


Ctrl+p 


Up 


Ctrl+f 


Right 


Ctrl+n 


Down 


Ctrl+z 


Previous word 


Ctrl+x 


Next word 


Search 


Ctrl+k+f 


Find text 


Ctrl+1 


Find next 


Block 


Ctrl+k+b 


Begin 


Ctrl+k+k 


End 


Ctrl+k+m 


Move block 


Ctrl+k+c 


Copy block 


Ctrl+k+w 


Write block to file 


Ctrl+k+y 


Delete block 


Ctrl+k+/ 


Filter 


Misc 


Ctrl+k+a 


Center line 


Ctrl+t 


Options 


Ctrl+r 


Refresh 


File 


Ctrl+k+e 


Open new file to edit 
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Table 5-2: Control Keys for Editing with JOE (continued) 



Key Combo 


Result 


File (continued) 


Ctrl+k+r 


Insert file at cursor 


Ctrl+k+d 


Save 


Goto 


Ctrl+u 


Previous screen 


Ctrl+v 


Next screen 


Ctrl+a 


Line beginning 


Ctrl+e 


End of line 


Ctrl+k+u 


Top of file 


Ctrl+k+v 


End of file 


Ctrl+k+1 


To line number 


Delete 


Ctrl+d 


Delete character 


Ctrl+y 


Delete line 


Ctrl+w 


Delete word right 


Ctrl+o 


Delete word left 


Ctrl+j 


Delete line to right 


Ctrl+- 


Undo 


Ctrl+6 


Redo 


Exit 


Ctrl+k+x 


Save and quit 


Ctrl+c 


Abort 


Ctrl+k+z 


Shell 



Continued 
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Table 5-2: Control Keys for Editing with JOE (continued) 




Key Combo 




Result 




Spell 




Ctrl+[+n 




Word 




Ctrl+[+l 




File 



Using the Pico and nano Editors 

Pico is a popular, very small text editor, distributed as part of the Pine e-mail client. 
Although Pico is free, it is not truly open source. Therefore, many Linux distributions 
don't offer Pico. Instead, most distributions offer an open source clone of Pico called 
nano (wano's another editor). SUSE provides both Pico and nano as optional packages. 
This section describes the nano editor. 

nano (represented by the nano command) is a compact text editor that runs from the 
shell, but is screen-oriented (owing to the fact that it is based on the curses library). 
nano is popular with those who formerly used the Pine mail client because nano's 
editing features are the same as those used by Pine's Pico editor. On the rare occasion 
that you don't have the vi editor available on a Linux system (such as when installing 
a minimal Gentoo Linux), nano may be available. On SUSE, nano is part of the nano 
package and relies on the spell program for spell checking. This program is not nor- 
mally available on SUSE, though. 

As with the JOE editor, instead of having command and typing modes, you can just 
begin typing. To open a text file for editing, just type nano and the file name or use some 
of the following options: 



$ nano memo.txt 

$ nano -B memo.txt 

$ nano -m memo.txt 

$ nano +83 memo.txt 



Open memo.txt for editing 

When saving, back up previous to -.filename 
Turn on mouse to move cursor (if supported} 
Begin editing on line 83 



As with JOE, to add text, just begin typing. Use arrow keys to move the cursor left, 
right, up, or down. Use the Delete key to delete text under the cursor or the Backspace 
key to erase text to the left of the cursor. Press Enter to add a line break. Press Ctrl+g 
to read help text. Table 5-3 shows the control codes for nano that are described on the 
help screen. 



Table 5-3: Control Keys for Editing with nano 



Control Code 


Function Key 


Description 


Ctrl+g 


Fl 


Show help text. (Press Ctrl+x to exit help.) 


Ctrl+x 


F2 


Exit nano (or close the current file buffer). 
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Table 5-3: Control Keys for Editing with nano (continued) 



Control Code 


Function Key 


Description 


Ctrl+o 


F3 


Save the current file 


Ctrl+j 


F4 


Justify current text in the current paragraph 


Ctrl+r 


F5 


Insert a file into the current file 


Ctrl+w 


F6 


Search for text 


Ctrl+y 


F7 


Go to the previous screen 


Ctrl+v 


F8 


Go to the next screen 


Ctrl+k 


F9 


Cut (and store) the current line or marked text 


Ctrl+u 


F10 


Uncut (paste) the previously cut line into file 


Ctrl+c 


Fll 


Display the current cursor position 


Ctrl+t 




Start spell checking (fails unless you install the old 
spell program) 


Ctrl+Shift+- 




Go to selected line and column numbers 


Ctrl+\ 




Search and replace text 


Ctrl+6 




Mark text, starting at the cursor (Ctrl+6 to unset mark) 


Ctrl+f 




Go forward one character 


Ctrl+b 




Go back one character 


Ctrl+Space 




Go forward one word 


Shift+Alt+Space 




Go backward one word 


Ctrl+p 




Go to the previous line 


Ctrl+n 




Go to the next line 


Ctrl+a 




Go to the beginning of the current line 


Ctrl+e 




Go to the end of the current line 


Alt+9 




Go to the beginning of the current paragraph 



Continued 
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Table 5-3 


: Control Keys for Editing with nano (continued) 




Control Code 


Function 


Key 


Description 




Alt+0 








Go to the end of the current paragraph 




Alt+\ 








Go to the first line of the file 




Alt+/ 








Go to the last line of the file 




Alt+] 








Go to the bracket matching the current bracket 




Alt+= 








Scroll down one line 




Alt+- 








Scroll up one line 



Graphical Text Editors 



Just because you are editing text doesn't mean you have to use a text-based editor. 
The main advantages of using a graphical text editor is that you can use a mouse to 
select menus, highlight text, cut and copy text, or run special plug-ins. 

You can expect to have the GNOME text editor (gedit) if your Linux system has 
the GNOME desktop installed. Features in gedit let you check spelling, list docu- 
ment statistics, change display fonts and colors, and print your documents. The KDE 
desktop also has its own KDE text editor (kate). It includes similar features to the 
GNOME text editor, along with many extras, such as the ability to send the current 
document with kmail or another user-configurable KDE component. 

Vim itself comes with an X GUI version. It is launched with the gvim command, which 
is part of the gvim package. You also need to install the base GNOME packages if you 
run the KDE desktop instead of GNOME. If you'd like to turn GUI Vim into a more 
user-friendly text editor, you can download a third-party configuration called Cream 
from http : //cream. sourcef orge .net/. 

Other text editors you can install include nedit (with features for using macros and 
executing shell commands) and leafpad (which is similar to the Windows Notepad text 
editor). The Scribes text editor (scribes) includes some advanced features for automatic 
correction, replacement, indentation, and word completion. 



Listing, Sorting, and Changing Text 

Instead of just editing a single text file, you can use a variety of Linux commands to 
display, search, and manipulate the contents of one or more text files at a time. 
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Listing Text Files 



The most basic method to display the contents of a text file is with the cat command. The 
cat command concatenates (in other words, outputs as a string of characters) the con- 
tents of a text file to your display (by default). You can then use different shell metachar- 
acters to direct the contents of that file in different ways. For example: 

$ cat myfile.txt Send entire file to the screen 

$ cat myfile.txt > copy.txt Direct file contents to another file 

$ cat myfile.txt >> myotherfile.txt Append file contents to another file 

$ cat -s myfile.txt Display consecutive blank lines as one 

$ cat -n myfile.txt Show line numbers with output 

$ cat -b myfile.txt Show line numbers only on non-blank lines 

However, if your block of text is more than a few lines long, using cat by itself becomes 
impractical. That's when you need better tools to look at the beginning or the end, or 
page through the entire text. 

To view the top of a file, use head: 

$ head myfile.txt 

$ cat myfile.txt | head 

Both of these command lines use the head command to output the top 10 lines of the 
file. You can specify the line count as a parameter to display any number of lines from 
the beginning of a file. For example: 

$ head -n 50 myfile.txt Show the first 50 lines of a file 

$ ps auwx | head -n 15 Show the first 15 lines of ps output 

This can also be done using this obsolete (but shorter) syntax: 

$ head -50 myfile.txt 
$ ps auwx | head -15 

You can use the tail command in a similar way to view the end of a file: 

$ tail -n 15 myfile.txt Display the last 15 lines in a file 

$ tail -15 myfile.txt Display the last 15 lines in a file 

$ ps auwx | tail -n 15 Display the last 15 lines of ps output 

The tail command can also be used to continuously watch the end of a file as the file is writ- 
ten to by another program. This is very useful for reading live log files when trouble- 
shooting apache, sendmail, or many other system services: 

# tail -f /var/log/messages Watch system messages live 

# tail -f /var/log/mail Watch mail server messages live 
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Paging Through Text 



When you have a large chunk of text and need to get to more than just its beginning 
or end, you need a tool to page through the text. The original Unix system pager was the 
more command: 

$ ps auwx | more Page through the output of ps (press spacebar J 

$ more myfile.txt Page through the contents of a file 

However, more has some limitations. For example, in the example with ps above, more 
could not scroll up. The less command was created as a more powerful and user- 
friendly more. The common saying when less was introduced was: "What is less? 
less is more!" We recommend you no longer use more, and use less instead. 

NOTE less has another benefit worth noting. Unlike text editors such as vi, it 
does not read the entire file when it starts. This results in faster start-up times 
when viewing large files. 

The less command can be used with the same syntax as more in the examples above: 

$ ps auwx | less Page through the output of ps 

$ cat myfile.txt | less Page through the contents of a file 

$ less myfile.txt Page through a text file 

The less command allows you to navigate using up and down arrow keys, PageUp, 
PageDown, and the spacebar. If you are using less on a file (not standard input), press 
v to open the current file in vi. The editor used by less comes from the VISUAL envi- 
ronment variable, or the EDITOR environment variable if VISUAL is not set. If none are 
set, less defaults to vi. As in vi, Shift+g takes you to the end of the file. Shift+f takes 
you to the end of the file, and then scrolls the file as new input is added, similar to a 
tail -f. 

Press Ctrl+c to interrupt that mode. As in vi, while viewing a file with less, you can 
search for a string by pressing / (forward slash) followed by the string and Enter. To search 
for further occurrences, press / and Enter repeatedly. 

To scroll forward and back while using less, use the f and b keys, respectively. For example, 
lOf scrolls forward 10 lines and 15b scrolls back 15 lines. Type d to scroll down half a 
screen and u to scroll up half a screen. 

Paginating Text Files with pr 

The pr command provides a quick way to format a bunch of text into a form where it 
can be printed. This can be particularly useful if you want to print the results of some 
commands, without having to open up a word processor or text editor. With pr, you 
can format text into pages with header information such as date, time, file name, and page num- 
ber. Here is an example: 

$ rpm -qa | sort | pr --column=2 | less Paginate package list in 2 cols 
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In this example, the rpm -qa command lists all software packages installed on your 
system and pipes that list to the sort command, to be sorted alphabetically. Next 
that list is piped to the pr command, which converts the single-column list into two 
columns (--columns = 2) and paginates it. Finally, the less command lets you page 
through the text. 

Instead of paging through the output, you can send the output to a file or to a printer. Here 
are examples of that: 

$ rpm -qa | sort | pr --column=2 > pkg.txt Send pr output to a file 
$ rpm -qa | sort | pr --column=2 | lpr Send pr output to printer 

Other text manipulation you can do with the pr command includes double-spacing the 
text (-d), showing control characters (-c), or offsetting the text a certain number of 
spaces from the left margin (for example, -o 5 to indent five spaces from the left). 

Searching for Text with grep 

The grep command comes in handy when you need to perform more advanced string 
searches in a file. In fact, the phrase to grep has actually entered the computer jargon 
as a verb, just as to Google has entered the popular language. Here are examples of 
the grep command: 

$ grep francois myfile.txt Show lines containing francois 

# grep 404 /var/log/apache2/* Show lines containing 404, if you installed 

the apache2 Web server 
$ ps auwx | grep init Show init lines from ps output 

$ ps auwx | grep "\[*\]" Show bracketed commands 

$ dmesg | grep " [ ]ata\| A ata" Show ata kernel device information 

The command lines just shown have some particular uses, beyond being examples 
of the grep command. By searching apache2 for 4 04 you can see requests to your 
web server for pages that were not found; these could be someone fishing to exploit 
your system, or a web page you moved or forgot to create. (You must install a web 
server such as apache2 first.) Displaying bracketed commands that are output from 
the ps command is a way to see commands for which ps cannot display options. The 
last command checks the kernel buffer ring for any ATA device information, such as 
hard disks and CD-ROM drives. 

The grep command can also recursively search a few or a whole lot of files at the same time. The 
following command recursively searches files in the /etc/apache2 directory for the 
string VirtualHost: 

$ grep -R VirtualHost /etc/apache2/ 

Add line numbers (-n) to your grep command to find the exact lines where the search 
terms occur: 

$ grep -Rn VirtualHost /etc/apache2/ 
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To colorize the searched term in the search results, add the --color option: 

$ grep --color -Rn VirtualHost /etc/apache2/ 

By default, in a multifile search, the file name is displayed for each search result. Use 
the -h option to disable the display of file names. The following example searches for the 
string sshd in the files in the /var/log directory: 

# grep -h sshd /var/log/* 

If you want to ignore case when you search messages, use the - i option: 

# grep -i apparmor /var/ log/messages Search file for apparmor (any case) 

To display only the name of the file that includes the search term, add the - 1 option: 

# grep -Rl VirtualHost /etc/apache2/* 

To display all lines that do not match the string, add the -v option: 

# grep -v " 200 " /var/log/apache2/access_log* Show lines without " 200 " 

NOTE When piping the output o/ps into grep, here's a trick to prevent the 
grep process from appearing in the grep results: 

# ps auwx | grep "[i]nit" 

Checking Word Counts with wc 

There are times when you need to know the number of lines that match a search 
string. The wc command can be used to count the lines that it receives. For example, 
the following command lists how many hits in an apache log file come from a spe- 
cific IP address: 

$ grep 192.198.1.1 /var/log/apache2/access_log | wc -1 

The wc command has other uses as well. By default, wc prints the number of lines, words, and 
bytes in a file: 

$ wc /usr/share/doc/packages/bash/INTRO List counts for a single file 

187 1120 7072 /usr/share/doc/packages/bash/INTRO 
$ wc /usr/share/doc/packages/bash/* List single/totals for many files 

11563 39059 276484 /usr/share/doc/packages/bash/bash .html 

733556 /usr/share/doc/packages/bash/bashref .html 
4 81 / us r/ share /doc /packages /bash/ BUGS 
11659 /usr/ share /doc /packages /bash/COMPAT 
18454 /usr/share/doc /packages /bash/COPYING 
73 644 /usr /share /doc /packages /bash/ FAQ 

7 072 /usr /share /doc /packages /bash/ INTRO 
50847 /usr /share/doc /packages /bash/NEWS 



15307 


75523 


16 


68 


275 


1717 


347 


3050 


1841 


11370 


187 


1120 


1214 


7410 


30750 


139317 
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Sorting Output with sort 

It can also be useful to sort the content of a file or the output of a command. This can be helpful 
in bringing order to disorderly output. The following examples list the names of all 
RPM packages currently installed, grabs any with apparmor in the name, and sorts 
the results in alphanumeric order (forward and reverse): 

$ rpm -qa | grep apparmor | sort Sort in alphanumeric order 

$ rpm -qa | grep apparmor | sort -r Sort in reverse alphanumeric order 

The following command sorts processes based on descending memory usage (fourth field of 
ps output). The -k option specifies the key field to use for sorting. 4 , 4 indicates that 
the fourth field, and only the fourth field, is a key field. 

$ ps auwx I sort -r -k 4,4 

The following command line sorts loaded kernel modules in increasing size order. The n option 
tells sort to treat the second field as a number and not a string: 

$ lsmod | sort -k 2,2n 

Finding Text in Binaries with Strings 

There are times when you need to read the ASCII text that is inside a binary file. You 
can sometimes learn a lot about an executable that way. For those occurrences, use 
strings to extract all the human-readable ASCII text. The strings command is part of the 
binutils package. Here are some examples: 

$ strings /bin/Is | grep -i libc Find occurrences of libc in Is 
$ cat /bin/Is | strings List all ASCII text in Is 

$ strings /bin/Is List all ASCII text in Is 



Replacing Text with sed 



Finding text within a file is sometimes the first step towards replacing text. Editing 
streams of text is done using the sed command. The sed command is actually a full- 
blown scripting language. For the examples in this chapter, we cover basic text replace- 
ment with the sed command. 

If you are familiar with text replacement commands in vi, sed has some similarities. 
In the following example, you would replace only the first occurrence per line oifmncois 
with chris. Here, sed takes its input from a pipe, while sending its output to stdout 
(your screen): 

$ cat myfile.txt | sed s/francois/chris/ 

Adding a g to the end of the substitution line, as in the following command, causes 
every occurrence oifrancois to be changed to chris. Also, in the following example, input 
is directed from the file myf ile . txt and output is directed to mynewf ile . txt: 

$ sed s/francois/chris/g < myfile.txt > mynewfile.txt 
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The next example replaces the first occurrences of /var/www on each line in the /etc/ 
apache2/httpd. conf file with /home/www. Here, you have to use quotes and back- 
slashes to escape the forward slashes so they are not interpreted as delimiters: 

$ sed ' s/\/var\/www\//\/home\/www\// ' < /etc/apache2/httpd.conf 

You must have first installed the apache2 package for the original file to be present. 

Although the forward slash is sed's default delimiter, you can change the delimiter to any 
other character of your choice. Changing the delimiter can make your life easier when 
the string contains slashes. For example, the previous command line that contains a 
path could be replaced with either of the following commands: 

$ sed ' s-/var/www/-/home/www/- ■ < /etc/apache2/httpd.conf 
$ sed ' sD/var/www/D/home/www/D' < /etc7apache2/httpd.conf 

In the first line shown, a dash (-) is used as the delimiter. In the second case, the letter D 
is the delimiter. 

The sed command can run multiple substitutions at once, by preceding each one with -e. 
Here, in the text streaming from myf ile . txt, all occurrences oifrancois are changed 
to FRANCOIS and occurrences of chris are changed to CHRIS: 

$ sed -e s/francois/FRANCOIS/g -e s/chris/CHRIS/g < myfile.txt 

You can use sed to add newline characters to a stream of text. Where <Enter> appears, press 
the Enter key. The > on the second line is generated by bash, not typed in. 

$ echo aaabccc | sed ' s/b/\<Enter> 
> /' 

aaa 
ccc 

The trick just shown does not work on the left side of the sed substitution command. 
When you need to substitute newline characters, it's easier to use the tr command. 

Translating or Removing Characters with tr 

The tr command is an easy way to do simple character translations on the fly. In the following 
example, new lines are replaced with spaces, so all the files listed from the current direc- 
tory are output on one line: 

$ Is | tr ' \n' ' ' Replace newline characters with spaces 

The tr command can be used to replace one character with another, but does not work with 
strings like sed does. The following command replaces all instances of the lowercase 
letter f with a capital F. 

$ tr f F < myfile.txt Replace every f in the file with F 
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You can also use the tr command to simply delete characters. Here are two examples: 



$ is | tr -a ' \n' 

$ tr -d f < myfile.txt 



Delete new lines (resulting in one line) 
Delete every letter f from the file 



The tr command can do some nifty tricks when you specify ranges of characters to work 
on. Here's an example of capitalizing lowercase letters to uppercase letters: 



$ echo chris | tr a-z A-Z 

CHRIS 



Translate chris into CHRIS 



The same result can be obtained with the following syntax: 

$ echo chris | tr ' [:lower:]' '[:upper:]' Translate chris into CHRIS 



Checking Differences Between Two Files 
with diff 

When you have two versions of a file, it can be useful to know the differences between the 
two files. For example, when upgrading an RPM, your old configuration file is typically 
left in place and the configuration file for the new version is created as f ile . rpmnew. 
When that occurs, you can use the diff command to discover which lines differ 
between your configuration and the new configuration, in order to merge the two. 
For example: 

$ diff /etc/apache2/httpd.conf .rpmnew /etc/apache2/httpd.conf 

You can change the output of diff to what is known as unified format. Unified format 
can be easier to read by human beings. It adds three lines of context before and after 
each block of changed lines that it reports, and then uses + and - to show the difference 
between the files. The following set of commands creates a file (f 1 . txt) containing a 
sequence of numbers (1-7), creates a file (f 2 . txt) with one of those numbers changed 
(using sed), and compares the two files using the diff command: 



$ seq 1 7 > fl.txt 

$ cat fl.txt 

1 

2 

3 

4 

5 

6 

7 

$ sed s/4/FOUR/ < fl.txt > f2.txt 

$ diff fl.txt f2.txt 

4c4 

< 4 



Send a sequence of numbers to fl . txt 
Display contents of fl . txt 



Change 4 to FOUR and send to f2.txt 
Shows line 4 was changed in file 



> FOUR 

$ diff -u fl.txt f2.txt 



Display unified output of diff 
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--- fl.txt 2007-09-07 18:26:06.000000000 -0500 

+++ f2.txt 2007-09-07 18:26:39.000000000 -0500 

@@ -1,7 +1,7 @@ 

1 

2 

3 

-4 

+FOUR 

5 



The dif f -u output just displayed adds information such as modification dates and 
times to the regular dif f output. The sdif f command can be used to give you yet 
another view. The sdif f command can merge the output of two files interactively, as shown 
in the following: 

$ sdiff fl.txt f2.txt 

1 l 

2 2 

3 3 

4 | FOUR 

5 5 

6 6 

7 7 

Another variation on the dif f theme is vimdif f , which opens the two files side by 
side in Vim and outlines the differences in color. Similarly gvimdif f opens the two 
files in gVim. 

The output of dif f -u can be fed into the patch command. The patch command 
takes an old file and a diff file as input and outputs a patched file. Following on the example 
above, we use the di f f command between the two files to generate a patch and then 
apply the patch to the first file: 

$ diff -u fl.txt f2.txt > patchfile.txt 
$ patch fl.txt < patchfile.txt 

patching file fl.txt 

$ cat fl.txt 

1 

2 

3 

FOUR 

5 
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That is how many OSS developers (including kernel developers) distribute their code 
patches. The patch and cliff commands can also be run on entire directory trees. 
However, that usage is outside the scope of this book. 

Using awk and cut to Process Columns 

Another massive text processing tool is the awk command. The awk command is a 
full-blown programming language. Although there is much more you can do with 
the awk command, the following examples show you a few tricks related to extracting 
columns of text: 

$ ps auwx | awk '{print $1,$11}' Show columns 1, 11 of ps 

$ ps auwx | awk '/francois/ {print $11}' Show francois ' processes 

$ ps auwx | grep francois | awk ' {print $11} ' Same as above 

The first example displays the contents of the first column (user name) and eleventh 
column (command name) from currently running processes output from the ps com- 
mand (ps auwx). The next two commands produce the same output, with one using the 
awk command and the other using the grep command to find all processes owned by 
the user named francois. In each case, once processes owned by francois are found, 
column 11 (command name) is displayed for each of those processes. 

By default, the awk command assumes the delimiter between columns is spaces. You 
can specify a different delimiter with the -F option as follows: 

$ awk -F: '{print $1,$5}' /etc/passwd Use colon delimiter to print cols 

You can get similar results with the cut command. As with the previous awk example, 
we specify a colon ( : ) as the column delimiter to process information from the / etc / 
passwd file: 

$ cut -d: -fl,5 /etc/passwd Use colon delimiter to print cols 

The cut command can also be used with ranges of fields. The following command prints 
columns 1 thru 5 of the /etc/passwd file: 

$ cut -d: -fl-5 /etc/passwd Show columns 1 through 5 

Instead of using a dash (-) to indicate a range of numbers, you can use it to print all 
columns from a particular column number and above. The following command displays all 
columns from column 5 and above from the /etc/passwd file: 

$ cut -d: -f5- /etc/passwd Show columns 5 and later 
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We prefer to use the awk command when columns are separated by a varying number 
of spaces, such as the output of the ps command. And we prefer the cut command 
when dealing with files delimited by commas (,) or colons (:), such as the /etc/ 
password file. 

Converting Text Files to Different Formats 

Text files in the Unix world use a different end-of-line character (\n) than those used 
in the DOS/Windows world (\r\n). You can view these special characters in a text file with 
the od command: 

$ od -c -t xl myfile.txt 

So they will appear properly when copied from one environment to the other, it is 
necessary to convert the files. Here are some examples: 

$ unix2dos < myunixfile.txt > mydosfile.txt 

$ cat mydosfile.txt | dos2unix > myunixfile.txt 

The unix2dos example just shown above converts a Linux or Unix plain text file 
(myunixf ile . txt) to a DOS or Windows text file (mydosf ile . txt). The dos2unix 
example does the opposite by converting a DOS/Windows file to a Linux/Unix file. 
You need to install the unix2dos package to get these commands. 



Summary 



Linux and Unix systems traditionally use plain text files for system configuration, 
documentation, output from commands, and many forms of stored information. As 
a result, many commands have been created to search, edit, and otherwise manipu- 
late plain text files. Even with today's GUI interfaces, the ability to manipulate plain 
text files is critical to becoming a power Linux user. 

This chapter explores some of the most popular commands for working with plain 
text files in Linux. Those commands include text editors (such as vi, nano, and j oe), 
as well as commands that can edit streaming data (such as sed and awk commands). 
There are also commands for sorting text (sort), counting text (wc), and translating 
characters in text (tr). 
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Playing with Multimedia 



There's no need to go to a GUI tool, if all you need 
to do is play a song or convert an image or audio 
file to a different form. There are commands for 
working with multimedia files (audio or images) 
that are quick and efficient if you find yourself 
working from the shell. And if you need to manip- 
ulate batches of multimedia files, the same com- 
mand you use to transform one file can be added 
to a script to repeat the process on many files. 

This chapter focuses on tools for working with 
audio and digital image files from the shell. 



Working with Audio 



There are commands available for Linux systems 
that can manipulate files in dozens of audio for- 
mats. Commands such as oggl23, mpg321, and 
play can be used to listen to audio files. There 
are commands for ripping songs from music CDs 
and encoding them to store efficiently. There are 
even commands to let you stream audio so any- 
one on your network can listen to your playlist. 



IN THIS CHAPTER 

Playing music with 
play, oggl23, and 
mpg321 

Adjusting audio with 
alsamixer and aumix 

Ripping music CDs 
with cdparanoia 

Encoding music with 
oggenc, flac, and lame 

Streaming music with 
icecast and ices 

Converting audio files 
with sox 

Transforming digital 
images with convert 



Playing Music 



Depending on the audio format you want to play there are several com- 
mand line players available for Linux. The play command (based on the 
sox facility, described later), can play audio files in multiple, freely avail- 
able formats. You can use oggl23 to play popular open source music for- 
mats, including Ogg Vorbis, Free Lossless Audio Codec (FLAC), and Speex 
files. The mpg321 player, which is available via third-party RPM reposito- 
ries, is popular for playing MP3 music files. 
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Install the sox package with YaST. Type play -h to see audio formats and effects available 
to use with play: 

$ play -h 

SUPPORTED FILE FORMATS: 8svx aif aifc aiff aiffc al alsa au auto avr cdda cdr 
cvs cvsd dat dvms fssd gsm hcom ima ircam la lu maud nist nul null ogg ossdsp 
pre raw s3 sb sf si smp snd sndt sou sph sw txw u3 u4 ub ul uw vms voc vorbis 
vox wav wve xa 

SUPPORTED EFFECTS: allpass band bandpass bandreject bass chorus compand deshift 
deemph dither earwax echo echos equalizer fade filter flanger highpass lowpass 
mcompand mixer noiseprof noisered pad pan phaser pitch polyphase repeat resample 
reverb reverse silence speed Stat stretch swap synth treble tremolo trim vibro 
vol 



Here are some examples of playing files using play: 



$ play inconceivable.wav 

$ play * . wav 

$ play hi . au vol . 6 

$ play -r 14000 short. aiff 



Play WAV file (may be ripped from CD) 
Play all WAV files in directory (up to 32) 
AU file, lower volume (can lower distortion) 
AIFF, sampling rate of 14000 hertz 



Here are examples for playing Ogg Vorbis (www. vorbis . com) files with oggl23: 

$ oggl23 mysong.ogg Play ogg file 

$ oggl23 http://vorbis.com/music/Lumme-Badloop.ogg Play web address 

$ oggl23 -z *.ogg Play files in pseudo-random order 

$ oggl23 /var/music/ Play songs in /var/music and sub dirs 

$ oggl23 -@ myplaylist Play songs from playlist 

The oggl2 3 command is part of the vorbis-tools package. 

A playlist is simply a list of directories or individual Ogg files to play When a direc- 
tory is listed, all Ogg files are played from that directory or any of its subdirectories. 
When playing multiple files, press Ctrl+c to skip to the next song. Press Ctrl+c twice to quit. 

To install the mpg321 MP3 player, you need to add the packman repository to YaST. 
Packman is the most popular third-party repository for SUSE. In the United States, 
you can set up an FTP repository for packman . unixheads . com, with a directory on 
the server of packman/suse/ 10 . 3 for openSUSE 10.3. See Chapter 2 for details on 
adding repositories. Once you set up the repository, install the mpg321 package. 

Here are examples for playing MP3 audio files with mpg321: 



$ mpg321 your song. mp3 

$ mpg321 -@ mp31ist 

$ cat mp31ist | mpg321 

$ mpg321 -z *.mp3 

$ mpg321 -Z *.mp3 



Play MP3 file 

Play songs from playlist of MP3s 

Pipe playlist to mpg321 

Play files in pseudo-random order 

Same as -z, but repeat forever 



98 



82928c06.qxd:Toolbox 11/1/07 12:22 PM Pac 



99 



Chapter 6: Playing with Multimedia 



An mpg321 playlist is simply a list of files. You can produce the list using a simple Is 
command and directing the output to a file. Use full paths to the files, unless you plan 
to use the list from a location from which relative paths make sense. 



Adjusting Audio Levels 



The command line audio tools you use to enable audio devices and adjust audio lev- 
els depend on the type of audio system you use. Advanced Linux Sound Architecture 
(ALSA) is the sound system used by most Linux systems these days. The Open Source 
Sound System (OSS) has been around longer and is still used on older hardware. In gen- 
eral, you can use alsamixer to adjust sound when ALSA is used and aumix with OSS. 

ALSA is the default sound system for many Linux systems. By adding loadable mod- 
ules that enable OSS device interfaces to work as well, audio applications that require 
the OSS device interface can work with ALSA as well. To see if OSS modules are loaded, 
including snd-pcm-oss (emulates /dev/dsp and /dev/audio), snd-mixer-oss 
(emulates /dev/mixer), and snd-seq-oss (emulates /dev/ sequencer), type: 

# lsmod | grep snd 

If the modules are loaded, you can use alsamixer to adjust audio levels for OSS 
sound applications. Start alsamixer as follows: 

$ alsamixer Show alsamixer screen with playback view 

$ alsamixer -V playback Show only playback channels (default) 
$ alsamixer -V all Show with playback and capture views 

$ alsamixer -c 1 Use alsamixer on second (1) sound card 

Volume bars appear for each volume channel. Move the right and left arrow keys to 
highlight different channels (Master, PCM, Headphone, and so on). Use the up and down 
arrow keys to raise and lower the volume on each channel. With a channel highlighted, 
press m to mute or unmute that channel. Press the spacebar on a highlighted input channel 
(Mic, Line, and so on) to assign the channel as the capture channel (to record audio input). To 
quit alsamixer, press Alt+q or the Esc key. Press Tab to cycle through settings for Playback, 
Capture, and All. 

The aumix audio mixing application (aumix package) can operate in screen-oriented 
or plain command mode. In plain text you use options to change or display settings. Here 
are examples of aumix command lines: 

Show left/right volume and type for all channels 
List current settings for line and mic only 
Set volume to 70% and microphone to 
-m q Set mic to 80%, set it to record, list mic 
With no options, aumix runs screen-oriented 

When run screen-oriented, aumix displays all available audio channels. In screen- 
oriented mode, use keys to highlight and change displayed audio settings. Use PageUp, PageDown, 
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$ 


aumix 


-q 




$ 


aumix 


-l 


q -m q 


$ 


aumix 


-V 


80 -m 


$ 


aumix 


-m 


80 -m R 


$ 


aumix 
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and the up arrow and down arrow keys to select channels. Use the right or left arrow 
key to increase or decrease volume. Type m to mute the current channel. Press the 
spacebar to select the current channel as the recording device. If a mouse is available, 
you can use it to select volume levels, balance levels, or the current recording channel. 



Ripping CD Music 



To be able to play your personal music collection from Linux, you can use tools such 
as cdparanoia to rip tracks from music CDs to WAV files on your hard disk. The 
ripped files can then be encoded to save disk space, using tools such as oggenc (Ogg 
Vorbis), f lac (FLAC), or lame (MP3). 

NOTE There are some excellent graphical tools for ripping and encoding CDs, 
such as grip and sound- juicer. Because they are CDDB-enabled, those tools 
can also use information about the music on the CD to name the output files (artist, 
album, song, and so on). This section, however, describes how to use some of the 
underlying commands to rip and encode CD music manually. 

Using cdparanoia, you can check that your CD drive is capable of ripping Compact 
Disc Digital Audio (CDDA) CDs, retrieve audio tracks from your CD drive, and copy 
them to hard disk. Start by inserting a music CD in your drive and typing the following: 

$ cdparanoia -vsQ 

Checking /dev/cdrom for cdrom. . . 
Checking for SCSI emulation... 
Checking for MMC style command set... 
Verifying CDDA command set. . . 

Table of contents (audio tracks only) : 



track 




.ength 






begin 




copy 


pre 


ch 


1. 


18295 


[04:03 


70] 





[00:00 


00] 


no 


no 


2 


2. 


16872 


[03:44 


72] 


18295 


[04:03 


70] 


no 


no 


2 


11. 


17908 


[03:58 


58] 


174587 


[38:47 


62] 


no 


no 


2 


12. 


17342 


[03:51 


17] 


192495 


[42:46 


45] 


no 


no 


2 


TOTAL 


209837 


[46:37 


62] 


(audio only) 











The snipped output shows cdparanoia checking the capabilities of /dev/cdrom, 
looking for SCSI emulations and MMC command set support, and verifying that the 
drive can handle CDDA information. Finally, it prints information about each track. 
Here are examples of cdparanoia command lines for ripping a CD to hard drive: 



$ 


cdparanoia 


-B 








$ 


cdparanoia 


-B 


-- 


"5-7" 




$ 


cdparanoia 


-- 


"3 


-8" abc 


wav 


$ 


cdparanoia 


-- 


"1 


[40]-" 




$ 


cdparanoia 


-f 


-- 


"3" 




$ 


cdparanoia 


-a 


-- 


"5" 




$ 


cdparanoia 


-w 


-- 


"1" my 


wav 



Rip tracks as WAV files by track name 
Rip tracks 5-7 into separate files 
Rip tracks 3-8 to one file (abc. wav) 
Rip tracks 1 from 40 sees in to end 
Rip track 3 and save to AIFF format 
Rip track 5 and save to AIFC format 
Rip track 1 and name it my. wav 
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Encoding Music 



After a music file is ripped from CD, encoding that file to save disk space is usually 
the next step. Popular encoders include oggenc, f lac, and lame, for encoding to Ogg 
Vorbis, FLAC, and MP3 formats, respectively. 

With oggenc, you can start with audio files or streams in WAV, AIFF, FLAC, or raw 
format and convert them to Ogg Vorbis format. Although Ogg Vorbis is a lossy for- 
mat, the default encoding from WAV files still produces very good quality audio and 
can result in a file that's about one-tenth the size. Here are some examples of oggenc: 

$ oggenc ab.wav Encodes WAV to Ogg {ah. ogg) 

$ oggenc ab.flac -o new. ogg Encodes FLAC to Ogg (new. ogg) 

$ oggenc ab.wav -q 9 Raises encoding quality to 9 

By default, the quality (-q) of the oggenc output is set to 3. You can set the quality to 
any number from -1 to 10 (including fractions such as 5.5). 

$ oggenc NewSong.wav -o NewSong.ogg \ 
-a Bernstein -G Classical \ 
-d 06/15/1972 -t "Simple Song" \ 
-1 "Bernsteins Mass" \ 

-c info="From Kennedy Center" 

The command just shown converts MySong . wav to MySong . ogg. The artist name is 
Bernstein and the music type is Classical. The date is June 15, 1972, the song title is 
Simple Song and the album name is Bernsteins Mass. A comment is From Kennedy 
Center. The backslashes aren't needed if you just keep typing the whole command on 
one line. However, if you do add backslashes, make sure there are no spaces after the 
backslash. 

The preceding example adds information to the header of the resulting Ogg file. You 
can see the header information, with other information about the file, using ogginf o: 

$ ogginf o NewSong.ogg 

Processing file "NewSong.ogg 11 ... 

Channels: 2 

Rate: 44100 

Nominal bitrate: 112.000000 kb/s 

User comments section follows... 

info=From Kennedy Center 

title=Simple Song 

artist=Bernstein 

genre=Classical 

date=06/15/1972 

album=Bernsteins Mass 
Vorbis stream 1: 

Total data length: 3039484 bytes 

Playback length: 3m: 25. 240s 

Average bitrate: 118.475307 kb/s 
Logical stream 1 ended 
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Here you can see that comments were added during encoding. The -c option was used 
to set an arbitrary field (in this case, info) with some value to the header. Besides the 
comments information, you can see that this file has two channels and was recorded at 
a 44100 bitrate. You can also see the data length, playback time, and average bitrate. 

The f lac command (from the flac package) is an encoder similar to oggenc, except 
that the WAV, AIFF, RAW, FLAC, or Ogg file is encoded to a FLAC file. Because flac 
is a free lossless audio codec, it is a popular encoding method for those who want to 
save some space, but still want top-quality audio output. Using default values, our 
encoding from WAV to FLAC resulted in files one-half the size, as opposed to one- 
tenth the size with oggenc. Here is an example of the flac command: 

$ flac now.wav Encodes WAV to FLAC (now. flac) 

$ sox now.wav now.aiff Encodes WAV to AIFF (now.aiff) 

$ flac now.aiff -o now2.flac Encodes AIFF to FLAC (now. flac) 

$ flac -8 top.wav -o top. flac Raises compression level to 8 

The compression level is set to - 5 by default. A range from - to - 8 can be used, with 
the highest number giving the greatest compression and the lower number giving 
faster compression time. The flac command can also be used to add an image to the FLAC 
file. Here's an example: 

$ flac hotsong.wav -o hotsong.flac \ Encodes WAV to FLAC (now. flac) 
--picture=cover. jpg Adds cover . jpg to FLAC file 

With an image embedded into the FLAC audio file, music players such as Rhythmbox 
can display the embedded image when the song is playing. So, a CD cover or image 
from a music video can be used in the FLAC file. 

To convert files to MP3 format using the lame command, you must first install the lame 
package. Because lame is not included with SUSE, you must get it from a third-party 
software repository such as the packman repository covered previously. See Chapter 2 
for information on installing from a non-default repository. Here are some examples 
of the lame command to encode from WAV and AIFF files: 

$ lame in.wav Encodes WAV to MP3 (in.wav.mp3) 

$ lame in.wav --preset standard Encodes to MP3 with std presets 

$ lame tune.aiff -o tune.mp3 Encodes AIFF to MP3 (tune.mp3 ) 

$ lame -h -b 64 -m m in.wav out.mp3 High quality, 64-bit, mono mode 

$ lame -q in.wav -o abcHQ.mp3 Encodes with quality set to 

With lame, you can set the quality from to 9 (5 is the default). Setting the quality to 
uses the best encoding algorithms, while setting it to 9 disables most algorithms (but 
the encoding process moves much faster). As with oggenc, you can add tag information to 
your MP3 file that can be used later when you play back the file. Here's an example: 

$ lame NewSong.wav NewSong.mp3 \ 
--ta Bernstein --tg Classical \ 
--ty 1972 --tt "Simple Song" \ 
--tl "Bernsteins Mass" \ 
--tc "From Kennedy Center" 
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Like the wav-to-ogg example shown earlier in this chapter, the command just shown 
converts NewSong . wav to NewSong . mp3 . As before, the artist name is Bernstein and the 
music type is Classical. The year is 1972, the song title is Simple Song, and the album 
name is Bernsteins Mass. A comment is From Kennedy Center. The backslashes aren't 
needed if you just keep typing the whole command on one line. However, if you do add 
backslashes, make sure there are no spaces after the backslash. 

The tag information appears on the screen in graphical MP3 players (such as 
Rhythmbox and Totem, when they have been enabled to play MP3 format). You can 
also see tag information when you use command line players, such as the following 
mpg321 example: 

$ mpgl23 NewSong. mp3 

High Performance MPEG 1.0/2.0/2.5 Audio Player for Layer 1, 2, and 3. 



Title 


Simple Song 


Artist 


Bernstein 


Album 


Bernsteins Mass 


Year 


1972 


Comment 


From Kennedy Center 


Genre 


Classical 



Playing MPEG stream from NewSong. mp3 . . . 

MPEG 1.0 layer III, 128 kbit/s, 44100 Hz joint-stereo 



Streaming Music 



If your music is on one machine, but you're working from another machine, setting up a 
streaming music server is a quick way to broadcast your music so it can be picked up from 
one or more computers on your network. To do this, install the icecast streaming media 
server and ices audio source client. 

# yum install icecast ices 

Here's a quick and dirty procedure for setting up icecast and ices to stream your 
music. Perform this task on the computer that contains the music you want to serve: 

1. Edit the /etc/icecast.xml file to change all passwords listed. Search for hackme 
to find the current passwords. You probably want different user and administrative 
passwords, especially if you allow others to stream music to the server. Remember 
the passwords you set for later. You may want to change other settings in this file 
as well, such as hostname. 

2. If you have a firewall, check that TCP port 8000 is accessible. 

3. Start the icecast server as root user by typing the following (the server will actually 
run as the icecast user): 

# service icecast start 

4. Add a new user account calls ices, and then use the ices user account to create 
your playlist. As root user, type the following: 

# useradd -m ices 

# passwd ices 
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Changing password for user ices. 
New UNIX password: ******** 

5. Log in as the ices user. 

6. Create a playlist using any text edit or by directing a listing of your music to a file. 
For example, if all your Ogg music files are in /var/music subdirectories, type 
the following: 

$ find /var/music -name *.ogg > /home/ices/playlist.txt 

With the playlist file created, use any text editor to remove or add files or directo- 
ries to make your playlist as you would like it. (If you want some files to try out 
for your playlist, download some from http : / /vorbis . com/music.) 

7. As the ices user, copy the file /usr/shar/doc/packages/ices/ices- 
playlist .xml to the /home/ ices directory. In the ices home directory, edit the 
/ices -playlist .xml file so it will play from your playlist and feed that music 
to your running icecast server. In particular, you want to modify the metadata, 
input, and instance modules. (Be sure to change playlist . txt to the path 
where you put your playlist . txt file.) 

<metadata> 

<name>My Music Server</name> 

<genre>Dif ferent music styles</genre> 

<description>Mix of my personal music</description> 
</metadata> 
<input> 

<module>playlist</module> 

<param name=" type">basic</param> 

<param name=" f ile">/home/ices/playlist . txt</param> 

<!-- random play --> 

<param name="random">l</param> 

</ input > 
<instance> 

<hostname>localhost</hostname> 

<port>8000</port> 

<password>MlcePw</password> 

<mount > /mymusic . ogg< /mount > 

</instance> 

Of the values just shown (in bold), the most critical are the location of your playlist 
and the information about the instance of your icecast server. The password must 
match the source password you added to your /etc/icecast .xml file. 

8. Launch the ices audio feed by typing the following: 

# mkdir /var/log/ices 

# ices ices-playlist .xml & 
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9. Test that you can play music from the local computer as follows: 

# oggl23 http: //localhost : 8000/mymusic.ogg 

10. If that test works, try playing the icecast stream from another computer on your 
network by replacing localhost with the server's IP address or host name. 

11. If there are problems, check /var/ log /icecast and /var/ log /ices log files. 
Recheck your passwords and locations of configuration files. 

12. When you are done, just kill ices and the icecast service: 

# killall ices 

# service icecast stop 

When the icecast and ices servers are running, you should have access to that stream- 
ing music from any computer that can access your server computer. Use any music 
player that can play from an HTTP address (oggl2 3, Rhythmbox, XMMS, and so on). 
Windows music players that can support the type of content you are serving should 
work as well. 

NOTE To skip a song, type this from the server: killall -hup ices. 



Converting Audio Files 



The sox utility is an extremely versatile tool for working with audio files in different 
freely available formats. Here are a few examples of things you can do with sox: 

The following command concatenates two WAV files to a single output file: 

$ sox head.wav tail.wav output.wav 

To use sox to display information about a file, use the stat effect as follows: 



$ sox soundl.wav - 


e stat 




Samples 


read: 




208512 


Length 


(seconds) : 


9 


456327 


Scaled 


oy: 


2147483647.0 


Maximum 


amplitude: 





200592 


Minimum 


amplitude: 


-0 


224701 


Midline 


amplitude: 


-0 


012054 


Mean 


norm: 





030373 


Mean 


amplitude: 





000054 


RMS 


amplitude: 





040391 


Maximum 


delta: 





060852 


Minimum 


delta: 





000000 


Mean 


delta: 





006643 


RMS 


delta: 





009028 


Rough 


frequency: 




784 


Volume 


adjustment : 




4.450 
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Use trim to delete seconds of sound from an audio file. For example: 

$ sox soundl.wav output.wav trim 4 Trim 4 seconds from start 

$ sox soundl.wav output.wav trim 2 6 Keep from 2-6 seconds of file 

The first example deletes the first 4 seconds from soundl . wav and writes the results 
to output .wav. The second example takes soundl .wav, keeps the section between 
second 2 and second 6 and deletes the rest, and writes to output .wav. 



Transforming Images 



With directories full of digital images, the ability to manipulate images from the com- 
mand line can be a huge time saver. The ImageMagick package (available with SUSE) 
comes with some very useful tools for transforming your digital images into forms you 
can work with. This section shows some commands for manipulating digital images, 
and provides examples of simple scripts for making those changes in batches. 

Getting Information about Images 

To get information about an image, use the identify command, as follows: 

$ identify p2090142.jpg 

p2090142.jpg JPEG 2048x1536+0+0 DirectClass 8-bit 402.037kb 
$ identify -verbose p2090142.jpg | less 

Standard deviation: 61.1665 (0.239869) 

Colors: 205713 

Rendering intent: Undefined 

Resolution: 72x72 

Units: PixelsPerlnch 

Filesize: 402.037kb 

Interlace: None 

Background color: white 

Border color: rgb(223 , 223 , 223 ) 

Matte color: grey74 

Transparent color: black 

Page geometry: 2048x1536+0+0 

Compression: JPEG 

Quality: 44 



The first command in the preceding example displays basic information about the 
image (its file name, format, geometry, class, channel depth, and file size). The sec- 
ond command shows every bit of information it can extract from the image. In addi- 
tion to the information you see in the example, the verbose output also shows creation 
times, the type of camera used, aperture value, and ISO speed rating. 
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Converting Images 



The convert command is a Swiss Army knife of file converters. Here are some ways 
to manipulate images using the convert command. The following examples convert 
image files from one format to another: 

$ convert tree.jpg tree.png Convert a JPEG to a PNG file 

$ convert icon.gif icon.bmp Convert a GIF to a BMP file 

$ convert photo. tiff photo.pcx Convert a TIFF to a PCX file 

Image types that convert supports include JPG, BMP, PCX, GIF, PNG, TIFF, XPM, 
and XWD. Here are examples of convert being used to resize images: 

$ convert -resize 1024x768 hat.jpg hat-sm.jpg 
$ convert -sample 50%x50% dog.jpg dog-half .jpg 

The first example creates an image (hat-sm. jpg) that is 1024 x 768 pixels. The 
second example reduced the image dog . jpg in half (5 0%x50%) and saves it as 

dog-half . jpg. 

You can rotate images from to 360 degrees. Here are examples: 

$ convert -rotate 270 sky. jpg sky-final. jpg Rotate image 210 degrees 
$ convert -rotate 90 house.jpg house-final.jpg Rotate image 90 degrees 

You can add text to an image using the -draw option: 

$ convert -fill black -pointsize 60 -font helvetica \ 
-draw 'text 10,80 "Copyright NegusNet Inc."' \ 
pl0.jpg pl0-cp.jpg 

The previous example adds copyright information to an image, using 60 point black 
Helvetica font to write text on the image. The text is placed 10 points in and 80 points 
down from the upper left corner. The new image name is plO-cp . jpg, to indicate 
that the new image had copyright information added. 

Here are some interesting ways to create thumbnails with the convert command: 

$ convert -thumbnail 120x120 a. jpg a-a.png 

$ convert -thumbnail 120x120 -polaroid a. jpg a-b.png 

$ convert -thumbnail 120x120 -polaroid 8 -background red a. jpg a-c.png 

All three examples create a 120 x 120 thumbnail. The second adds the -polaroid 
option to put a border around the thumbnail, so it looks like a Polaroid picture. The 
last example sets the -polaroid angle to 8 so that the image looks slightly askew. 
Figure 6-1 shows the results of these three examples. 
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a -a. png 
28.1KB 



a-b.png 

74.5 KB 




Figure 6-1: Use convert to create a thumbnail, Polaroid, and 
angled Polaroid. 



Besides the things you can do to make images useful and manageable, there are also 
ways of making your images fun and even weird. Here are some examples: 

$ convert -sepia-tone 75% house.jpg oldhouse.png 
$ convert -charcoal 5 house.jpg char-house. png 
$ convert -colorize 175 house.jpg color-house. png 

The -sepia- tone option gives the image an "old west" sort of look. The -charcoal 
option makes the image look as if the picture was hand-drawn using charcoal. By 
using the -colorize option, every pixel in the image is modified using the colorize 
number provided (175 in this case). Figure 6-2 shows the original house picture in the 
upper-left corner, the sepiatone in the upper-right, the charcoal in the lower left, and 
the colorized house in the lower right. 




Figure 6-2: Start with a normal image and sepiatone, charcoal, and colorize it. 



108 



82928c06.qxd:Toolbox 11/1/07 12:22 PM Pac 



109 



Chapter 6: Playing with Multimedia 



If you are looking for one more example of weird image conversions, try swirling your 
image. For example: 

$ convert -swirl 300 photo.pcx weird.pcx 

Converting Images in Batches 

Most of the image conversions described in this chapter can be done quite easily using 
a graphical image manipulation tool such the GIMP. However, where the convert 
commands we described can really shine are when you use them in scripts. So, instead 
of resizing, rotating, writing on, or colorizing a single file, you can do any (or all) of 
those things to a whole directory of files. 

You may want to create thumbnails for your duck decoy collection images. Or per- 
haps you want to reduce all your wedding photos so they can play well on a digital 
photo frame. You might even want to add copyright information to every image in a 
directory before you share them on the Web. All these things can be done quite easily 
with the convert commands already described and some simple shell scripts. 

Here's an example of a script you can run to resize an entire directory of photos to 1024 x 768 
pixels to play on a digital photo frame: 

$ cd $HOME/myimages 

$ mkdir small 

$ for pic in "Is *.png' 

do 

echo "converting $pic" 

convert -resize 1024x768 $pic small/sm-$pic 
done 

Before running the script, this procedure changes to the $HOME/myimages directory 
(which happens to contain a set of high-resolution images). Then it creates a subdirec- 
tory to hold the reduced images called small. The script itself starts with a for loop 
that lists each file ending in . png in the current directory (you might need to make that 
. jpg or other image suffix). Then, each file is resized to 1024 x 768 and copied to the 
small directory, with sm- added to each file name. 

Using that same basic script, you can use any of the convert command lines shown ear- 
lier, or make up your own to suit your needs. You might be able to convert a whole direc- 
tory of images in a few minutes that would have taken you hours of clicking in the GUI. 



Summary 



The shell can provide a quick and efficient venue for working with your audio and 
digital image files. This chapter describes ways of playing, ripping, encoding, con- 
verting, and streaming audio files from the command line. As for digital images, we 
provide many examples of using the convert command for resizing, rotating, con- 
verting, writing on, and otherwise manipulating those images. 
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7 

Administering 
File Systems 



File systems provide the structures in which files, 
directories, devices, and other elements of the 
system are accessed from Linux. Linux supports 
many different types of file systems (ext3, VFAT, 
ISO9660, NTFS, and so on) as well as many dif- 
ferent types of media on which file systems can 
exist (hard disks, CDs, USB flash drives, ZIP 
drives, and so on). 

Creating and managing disk partitions and the 
file systems on those partitions are among the 
most critical jobs in administering a Linux sys- 
tem. That's because if you mess up your file 
system, you might very well lose the critical 
data stored on your computer's hard disk or 
removable media. 

This chapter contains commands for partitioning 
storage media, creating file systems, mounting 
and unmounting partitions, and checking file 
systems for errors and disk space. 



Understanding 
File System Basics 



Even though there are a lot of different file sys- 
tem types available in Linux, there are not many 
that you need to set up a basic Linux system. For 
a basic Linux system, your computer hard disk 
may contain only three partitions: a swap parti- 
tion (used to handle the overflow of information 
in RAM), a boot partition that contains the boot 



IN THIS CHAPTER 

Understanding Linux 
file system types 

Partitioning disks with 
fdisk and parted 

Work with labels with 
e2label and findfs 

Create file systems 
with mkfs 

View file system 
info with tune2fs/ 
dumpe2fs 

Use swap areas with 
mkswap, swapon, and 
swapoff 

Use fstab, mount, and 
umount to mount and 
unmount file systems 

Check file systems 
with badblocks 
and fsck 

View RAID information 
with mdadm 

Check disk space with 
du and df 

Logical Volume 
Manager (LVM) 
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loader and kernel, and a root file system partition. The boot and root file system parti- 
tions are usually an ext3 file system type. 

The ext3 file system type is based on the ext2 file system type, adding a feature called 
journaling to its predecessor. Journaling can improve data integrity and recovery, espe- 
cially after unclean system shutdowns. Time-consuming file system checks are avoided 
during the next reboot after an unclean shutdown, because the changes that occurred 
since the most recent write to disk are saved and ready to be restored. 

Most of the examples in this chapter use ext3 files systems to illustrate how a file sys- 
tem is created and managed. However, there are times when you might want to use 
other file system types. Table 7-1 lists different file system types and describes when 
you might want to use them. 



Table 7-1: File System Types Supported in Linux 



File System Type 


Description 


ext3 


Most commonly used file system with Linux. Contains journaling 
features for safer data and fast reboots after unintended shutdowns. 


ext2 


Predecessor of ext3, but doesn't contain journaling. 


iso9660 


Evolved from the High Sierra file system (which was the original 
standard used on CD-ROM). May contain Rock Ridge extensions to 
allow iso9660 file systems to support long file names and other infor- 
mation (file permissions, ownership, and links). 


Jffs2 


Journaling Flash File System version 2 (JFFS2) that is designed for 
efficient operations on USB flash drives. Successor to 1FFS. 


jfs 


JFS file system that IBM used for OS/2 Warp. Tuned for large file sys- 
tems and high-performance environments. 


msdos 


MS-DOS file system. Can be used to mount older MS-DOS file sys- 
tems, such as those on old floppy disks. 


ntfs 


Microsoft New Technology File System (NTFS). Useful when file sys- 
tems need to share files with newer Windows systems (as with dual 
booting or removable drives). 


reiserfs 


Journaling file system that used to be used by default on some SUSE, 
Slackware, and other Linux systems. 


squashfs 


Compressed, read-only file system used on many Linux live CDs. 


swap 


Used on swap partitions to hold data temporarily when RAM is not 
currently available. 
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Table 7-1: File System Types Supported in Linux {continued) 



File System Type Description 



ufs Popular file system on Solaris and SunOS operating systems from 

Sun Microsystems. 

vfat Extended FAT (VFAT) file system. Useful when file systems need to 

share files with older Windows systems (as with dual booting or 
removable drives). 

xfs Journaling file system for high-performance environments. Can scale 

up to systems that include multiple terabytes of data that transfer 
data at multiple gigabytes per second. 



Besides the file system types listed in the table, there are also what are referred to as 
network shared file systems. Locally, a network shared file system may be an ext3, ntfs, or 
other normal file system type. However, all or part of those file systems can be shared 
with network protocols such as Samba (smbfs or cifs file system type), NFS (nfs), and 
NetWare (ncpfs). 

Many available file system types are either not useful for creating new file systems or 
not fully supported in every version of Linux. For example, file system types such as 
minix (for Minix systems), befs (for BeOS systems), and affs (for Amiga systems) are 
mostly useful if you need to mount and access old backup media from those systems. 
Even popular file systems may not be fully supported. For example, reiserfs file sys- 
tems can't be used with Security Enhanced Linux (SELinux) in Fedora and RHEL. 



Creating and Managing File Systems 

SUSE gives you the option of either having the installer create a default partitioning 
and file system scheme or letting you set that all up manually when you first install 
Linux. The installer lets you choose to erase the entire hard disk, or only use free disk 
space to set up the partitions. To take the manual approach instead, you must choose 
to create a custom layout. 

With the manual approach, the disk-partitioning tool lets you divide the hard disk 
into partitions as you choose. Later, there are a lot of command-line utilities you can 
use to change and work with your disk partitions and the file systems created on 
those partitions. 



Partitioning Hard Disks 



Historically, PC hard drives have used a 32-bit PC-BIOS partition table with a Master 
Boot Record (MBR). This limits partition sizes to 2TB and only allows four primary par- 
titions per drive. The use of extended partitions is a way to overcome the four primary 
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partition limit. In order to overcome the 2TB limit, PC-BIOS partition tables are being 
replaced with GPT (GUID Partition Tables). 

The old standard command for working with disk partitions is f disk. Because f disk 
cannot work with GPT partitions, however, it is slowly being deprecated. A more pow- 
erful and actively supported tool is the parted command. 

NOTE If you prefer to use graphical tools for partitioning, resizing, and otherwise 
manipulating your hard disk, you can try the YaST partioner, found in the System 
section of the YaST interface. 

Changing Disk Partitions with fdisk 

The fdisk command is a useful Linux tool for listing and changing disk partitions. 
Keep in mind that modifying or deleting partitions can cause valuable data to be 
removed, so be sure of your changes before writing them to disk. To use the fdisk 
command to list information about the partitions on your hard disk, type the following com- 
mand as root user: 

# fdisk -1 List disk partitions for every disk 

Disk /dev/sda: 82.3 GB, 82348277760 bytes 
255 heads, 63 sectors/track, 10011 cylinders 
Units = cylinders of 16065 * 512 = 8225280 bytes 



Device 


Boot 


Start 


End 


Blocks 


Id 


System 


/dev/sdal 


* 


1 


13 


104391 


83 


Linux 


/dev/sda2 




14 


9881 


79264710 


83 


Linux 


/dev/sda3 




9882 


10011 


1044225 


82 


Linux swap 



This example is for an 80GB hard disk that is divided into three partitions. The first 
(/dev/sdal) is a small /boot partition that is configured as a Linux ext3 file system 
(id 83). Note the asterisk (*), indicating that the first partition is bootable. The next 
partition is assigned to the root file system and is also ext3. The final partition is 

Linux swap. 

NOTE Since version 2.6.20 of the Linux kernel, both IDE and SCSI disks use 
device names /dev/sd?, where the ? is replaced by a letter (a, b, or c, and so 
on). In earlier versions ofSUSE, only SCSI disks and USB flash drives used the 
/dev/sd? names. IDE hard drives used /dev/hd? instead. 

If multiple disks are present, fdisk -1 will list them all unless you indicate the specific 
disk you want: 

# fdisk -1 /dev/sdb List disk partitions for a specific disk 

To work with a specific disk with the fdisk command, simply indicate the disk you want 
with no other options: 

# fdisk /dev/sda Start interactive fdisk session with disk 1 
Command (m for help) : m Type m to list help text as shown 
Command action 
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a toggle a bootable flag 

b edit bsd disklabel 

c toggle the dos compatibility flag 

d delete a partition 

1 list known partition types 

m print this menu 

n add a new partition 

o create a new empty DOS partition table 

p print the partition table 

q quit without saving changes 

s create a new empty Sun disklabel 

t change a partition's system id 

u change display/entry units 

v verify the partition table 

w write table to disk and exit 

x extra functionality (experts only) 
Command (m for help) : 

With the prompt displayed, you can use any of the commands shown to work with 
your hard disk. In particular, you can use p (to print the same listing as f disk -1), 
n (to create a new partition), d (to delete an existing partition), 1 (to list known file 
system types), or t (to change the file system type for a partition). The following 
examples show some of those f disk commands in action: 

Command (m for help) : d Ask to delete a partition 

Partition number (1-4): 4 Type partition number to delete 

Command (m for help) : n Create a new disk partition 

First cylinder (1-4983, default 1): 1 Select start (or Enter) 

Last cylinder ... (default 4983): 4983 Select end (or Enter) 
Command (m for help) : a Make a partition bootable 

Partition number (1-3): 1 Type bootable partition number 

Command (m for help) : t Select a file system type 

Partition number (1-3): 3 Select partition to change 

Hex code {type L to list codes) : 82 Assign partition as swap 

Unless you tell it otherwise, f disk assumes the new partition is a Linux ext3 parti- 
tion (83). You could have typed L to see the same listing of file system types and hex 
codes produced from the 1 command. As noted above, 82 can assign the partition 
as swap. Other Linux partitions that may interest you include Linux extended (85), 
Linux LVM (8e), Linux software raid (f d), and EFI/GTP (ee). 

For Windows partitions, you can assign a partition as HPFS/NTFS (7), Windows 95 
FAT32 (b), FAT 16 (6), or Windows 95 FAT32 LBA (c). Other Unix-type file systems 
include Minix (be or bf ), BSD/OS (e4), FreeBSD (ee), OpenBSD (ef ), NeXTSTEP 
(f 0), Darwin UFS (f l), and NetBSD (f 4). Any of these file system types might be use- 
ful if you have old backup media from those file systems that you want to restore. 

So far, you have not made any permanent changes to your partition table. If you are 
now very sure that your new settings are correct, type w to write those changes to the 
partition table. To abandon your changes (or quit after writing your changes), type q 
to quit your f disk session. 
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Copying Partition Tables with sfdisk 

To back up or replicate a disk's partition table, use sfdisk: 

# sfdisk -d /dev/sda > sda-table Back up partition tabie to file 

# sfdisk /dev/sda < sda-table Restore partition table from file 

# sfdisk -d /dev/sda | sfdisk /dev/sdb Copy partition table from disk to disk 

Changing Disk Partitions with parted 

As with f disk, parted can be used to list or change disk partitions. However, 
parted has a few other useful features as well. Here's how to list partitions with parted: 

# parted -1 

Model: ATA ST3320620AS (scsi) 

Disk /dev/sda: 320GB 

Sector size ( logical /physical } : 512B/512B 

Partition Table: msdos 



Number Start 


End 


Size 


Type 


File 


sys 


tern 


Flags 


1 32.3kB 


313MB 


313MB 


primary 


ext3 






boot, 


type=83, , 
















2 313MB 


52.7GB 


52 .4GB 


primary 


ext3 






/ i > 


3 52.7GB 


61.1GB 


8390MB 


primary 








i i > 


4 61.1GB 


32 0GB 


259GB 


extended 








i i > 


5 61.1GB 


32 0GB 


259GB 


logical 


ext3 






i r i 



, , , , type=83, , 

, , , , type=82, , 

, , , , type=05, , 

, , , , type=83, , 

This listing shows you if you have a classic msdos disk label (partition table), or a gpt 
one. In this case, the partition table is msdos. 

To run parted interactively, type parted followed by the name of the storage device you 
want to work with (such as /dev/sda). Or, if you have only one storage device, simply 
type parted: 

# parted 
GNU Parted 1.8.7 
Using /dev/sda 

Welcome to GNU Parted! Type 'help' to view a list of commands, 
(parted) 

To use parted interactively, either type whole commands or start with a few letters 
and use the Tab key to complete the command (as you would in the bash shell). And 
if you're really efficient, you can just type enough letters to allow parted to guess 
your input, as you would with Cisco IOS: p for print, mkl for mklabel, and so on. 

WARNING! Unlike f disk, parted immediately incorporates changes you make 
to your partitions, without explicitly writing the changes to disk. So don't just 
assume you can back out of any changes by simply quitting parted. 
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With each command in a parted session, you also have the option to enter the com- 
mand with all the arguments (for example, mkpart logical ext3 10.7GB 17.0GB) 
or just enter the command (mkpart) and parted will guide you interactively: 

(parted) mkpart Create a new partition 

Partition type? [logical]? primary 
File system type? [ext2]? ext3 
Start? 17GB 
End? 24GB 

Avoid using mkpartf s. It cannot create ext3 partitions properly. Instead, mkpart an 
ext3 partition (as shown) and format it later outside of parted with the mkf s . ext3 
command. In general, parted support for ext3 file systems is lacking. Resizing common 
Linux partitions can be useful if you need to make space for a new partition. Here is an 
example: 

(parted) resize 2 Resize a partition 

Start? [1.2GB] 1.2GB 
End? [24GB] 10GB 

WARNING! Unless you're using LVM, this will typically destroy your file system. 

To resize NTFS partitions, you can use the ntf sresize command. In SUSE, that command 
comes with the ntfsprogs package. That package also comes with commands for creat- 
ing (mkf s .ntf s), fixing (ntf sf ix), and getting information about (ntf sinf o) NTFS 
partitions. 

Working with File System Labels 

The term label, in regards to disk partitions, can refer to two different things. A disk label 
can be used as another name for a partition table, as seen in parted output. A partition 
label can also be the name of an individual partition. To see a partition's label, use the 
e2 label command: 

# e21abel /dev/sda5 

/home 

To set the label on a partition: 

# e21abel /dev/sda2 mypartition 

Bear in mind that /etc/f stab sometimes uses the partition label to mount the parti- 
tion as in the example below. Changing this label may render the system unbootable. 

LABEL=/boot /boot ext3 defaults 1 2 
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To find a partition when you know only the label, type the following: 

# findfs LAB£L=mypartition 

/dev/sda2 



Formatting a File System 



With your disk partitions in place, you can build a file system of your choice on each 
partition. Most Linux systems come with the commands needed to make and check 
file systems that are commonly used in Linux. Commands for formatting and checking file 
systems are mkf s and f sck, respectively. 

The mkf s command serves as the front end for many different commands aimed at for- 
matting particular file system types, such as mkf s . ext2, mkf s . ext3, mkf s . cramf s, 
mkf s . msdos, mkf s . ntf s, and mkf s . vfat. By adding packages that support other 
file systems, additional mkf s commands are available to seamlessly work with mkf s. 
These include mkf s . bf s, mkf s .minix, mkf s . xf s, and mkf s . xiaf s. Use each com- 
mand directly (as in mkf s .vfat /dev/sdbl) or via the mkf s command (as in mkf s 
-t vfat /dev/sdbl). 

Creating a File System on a Hard Disk Partition 

Basic software packages you need in SUSE to do file system creation and checking 
include util-linux (includes mkf s and other general utilities) and e2fsprogs (ext2/ 
ext3-specific tools). Specific mkf s commands for different file system types are 
included in ntfsprogs (ntfs), dosfstools (msdos and vfat), xfsprogs (xfs), jfsutils (jfs), 
mtd-utils (jffs and jffs2), and reiserfs-utils (reiserfs). 

Here are examples of the mkfs command to create file systems (be sure to add the -t option 
first): 

# mkfs -t ext3 /dev/sdbl Create ext3 file system on sbal 

# mkfs -t ext3 -v -c /dev/sdbl More verbose and scan for bad blocks 

# mk£s.ext3 -c /dev/sdbl Same result as previous command 

If you would like to add a partition label to the new partition, use the -L option: 

# mk£s.ext3 -c -L mypartition /dev/sdbl Add mypartition label 

Creating a Virtual File System 

If you want to try out different file system types or simply make a file system that is 
more portable (in other words, not tied to a physical disk), you can create a virtual file 
system. A virtual file system is one that sits within a file on an existing file system. You 
can format it as any file system type you like, move it around, and use it from differ- 
ent computers. 

Virtual file systems are useful for such things as creating live CDs or running dedicated 
virtual operating systems. In the example that follows, you create a blank 500MB 
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disk image file, format it as a file system, and then mount it to access data on the 
file system: 

$ dd if=/dev/zero of=mydisk count=2048000 Create zero-filled 1GB file 

$ du -sh mydisk Check virtual file system size 

1001M mydisk 

# mkfs -t ext3 mydisk Create files system on mydisk 
mydisk is not a block special device 

Continue (y/n) : y 

$ mkdir /mnt/image Create a mount point 

# mount -o loop mydisk /mnt/image Mount mydisk on /mnt/image 

In this procedure, the dd command creates an empty disk image file of 2048000 blocks 
(about 1GB). The mkfs command can create any file system type you choose (ext3 is 
done here). Because the file is not a block special device, as is the case when format- 
ting disk partitions, mkfs will warn you before starting to make the file system. The 
only other trick, after creating the mount point, is to indicate that you are mounting 
the file (mydisk) as a loop device (-o loop). Note that the mount command is the 
only command shown above that requires root privilege. 

When the virtual file system is mounted, you can access it as you would any file sys- 
tem. When you are done with the file system, leave it and unmount it: 

# cd /mnt/image Change to the mount point 

# mkdir test Create a directory on the file system 

# cp /etc/hosts . Copy a file to the file system 

# cd Leave the file system 

# umount /mnt/image Unmount the file system 

With the virtual file system unmounted, you could move it to another system or burn 
it to a CD to use a file system in another location. If you don't want the file system 
any more, simply delete the file. 



Viewing and Changing 
File System Attributes 



Using the tune2 f s or dumpe2 f s commands, you can view attributes of ext2 and ext3 file 
systems. The tune2 f s command can also be used to change file system attributes. Use the 
swapf s command to create a swap partition. Here are examples (both commands produce 
the same output): 

# tune2fs -1 /dev/sdal View tunable file system attributes 

# dumpe2fs -h /dev/sdal Same as tune2fs output 
dumpe2fs 1.39 (29-May-2006) 

Filesystem volume name: / 

Last mounted on: <not available> 

Filesystem UUID: f 5f 2 61d3-3 879-41d6-8245-f2153b0 032 04 

Filesystem magic number: 0xEF53 

Filesystem revision #: 1 (dynamic) 
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Filesystem features: has_journal ext_attr resize_inode dir_index filetype 

needs_recovery sparse_super large_file 



Default mount options: 


user_xattr acl 






Filesystem state: 


clean 








Errors behavior: 


Continue 








Filesystem OS type: 


Linux 








Inode count : 


7914368 








Block count: 


7907988 








Reserved block count: 


395399 








Free blocks: 


5916863 








Free inodes : 


7752077 








First block: 











Block size: 


4096 








Fragment size: 


4096 








Reserved GDT blocks: 


1022 








Blocks per group: 


32768 








Fragments per group : 


32768 








Inodes per group: 


32704 








Inode blocks per group: 


1022 








Filesystem created: 


Fri Jun 15 12 


13 


17 


2007 


Last mount time: 


Tue Jul 24 06 


47 


35 


2007 


Last write time: 


Tue Jul 24 06 


47 


35 


2007 


Mount count: 


2 








Maximum mount count : 


29 








Last checked: 


Fri Jun 15 12 


13 


17 


2007 


Check interval : 


(<none>) 








Reserved blocks uid: 


(user root) 








Reserved blocks gid: 


(group root 








First inode: 


11 








Inode size: 128 










Journal inode : 


8 








First orphan inode : 


988413 








Default directory hash: 


tea 








Directory Hash Seed: 


4137d20d-b398- 


-467b- 


a47a- 


Journal backup : 


inode blocks 








Journal size: 


128M 









The output shows a lot of information about the file system. For example, if you have 
a file system that needs to create many small files (such as a news server), you can 
check that you don't run out of inodes. Setting the Maximum mount count ensures 
that the file system is checked for errors after it has been mounted the selected num- 
ber of times. You can also find dates and times for when a file system was created, last 
mounted, and last written to. 

To change settings on an existing ext2 or ext3 file system, you can use the tune2 f s command. 
The following command changes the number of mounts before a forced file system 
check: 



# tune2fs -c 31 /dev/sdal 

tune2fs 1.39 (29-May-2006) 
Setting maximal mount count to 31 



Sets # of mounts before check is forced 
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If you'd like to switch to forced file system checks based on time interval rather than number 
of mounts, disable mount-count checking by setting it to negative 1 (-1): 

# tune2fs -c -1 /dev/sdal 

tune2fs 1.39 (29-May-2006) 
Setting maximal mount count to -1 

Use the -i option to enable time-dependent checking. Here are some examples: 

# tune2fs -i 10 /dev/sdal Check after 10 days 

# tune2fs -i Id /dev/sdal Check after 1 day 

# tune2£s -i 3w /dev/sdal Check after 3 weeks 

# tune2fs -i 6m /dev/sdal Check after 6 months 

# tune2£s -i /dev/sdal Disable time-dependent checking 

Be sure you always have either mount-count or time-dependent checking turned on. 
Use the - j option to turn an ext2 file system into ext3 (by adding a journal): 

# tune2fs -j /dev/sdal Add journaling to change ext2 to ext3 

Creating and Using Swap Partitions 

Swap partitions are needed in Linux systems to hold data that overflows from your 
system's RAM. If you didn't create a swap partition when you installed Linux, you 
can create it later using the mkswap command. You can create your swap partition either 
on a regular disk partition or in a file formatted as a swap partition. Here are some 
examples: 

# mkswap /dev/sdal Format sdal as a swap partition 
Setting up swapspace version 1, size = 205594 kB 

To check your swap area for bad blocks, use the -c option to mkswap: 

# mkswap -c /dev/sdal 

If you don't have a spare partition, you can create a swap area within a file: 

# dd if=/dev/zero of =/tmp/swapf ile count=65536 

65536+0 records in 

65536+0 records out 

33554432 bytes (34 MB) copied, 1.56578 s, 21.4 MB/s 

# chmod 600 /tmp/swapf ile 

# mkswap /tmp/swapf ile 

Setting up swapspace version 1, size = 67104 kB 

The dd command above creates a 32MB file named swapf ile. The chmod command 
locks down the permissions on the file, to avoid getting a warning from the swapon 
command down the road. The mkswap command formats the /tmp/swapf ile file to 
be a swap partition. 
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After you have created a swap partition or swap file, you need to tell the system to use 
the swap area you made using the swapon command. This is similar to what happens 
at boot time. Here are examples: 

# swapon /dev/sdal Turn swap on for /dev/sdal partition 

# swapon -v /dev/sdal Increase verbosity as swap is turned on 
swapon on /dev/sdal 

# swapon -v /tmp/swapf ile Turn swap on for the /tmp/ swap file file 
swapon on /tmp/swapf ile 

You can also use the swapon command to see a list of your swap files and partitions: 

# swapon -s View all swap files and partitions that are on 
Filename Type Size Used Priority 
/dev/sda5 partition 1020088 142764 -1 
/tmp/swapfile file 65528 -6 

To turn off a swap area, you can use the swapof f command: 

# swapoff -v /tmp/swapfile 

swapoff on /tmp/swapfile 

Swap areas are prioritized. The kernel will swap first to areas of high priorities, and 
then go down the list. Areas of the same priority get striped between. You can specify 
the priority of your swap area as you enable it using the -p option: 

# swapon -v -p 1 /dev/sdal Assign top swap priority to sdal 

Mounting and Unmounting File Systems 

Before you can use a regular, non-swap file system, you need to attach it to a directory 
in your computer's file system tree by mounting it. Your root file system (/) and other 
file systems you use on an ongoing basis are typically mounted automatically based on 
entries in your /etc/ f stab file. Other file systems can be mounted manually as they 
are needed using the mount command. 

Mounting File Systems from the fstab File 

When you first install Linux, the /etc/ fstab file is usually set up automatically to 
contain information about your root file systems and other file systems. Those file 
systems can then be set to mount at boot time or be ready to mount manually (with 
mount points and other options ready to use when a manual mount is done). 

Here is an example of a /etc/ fstab file: 



/dev/VolGroupOO/LogVolOO 


/ 


ext3 


defaults 1 1 


LABEL=/boot 


/boot 


ext3 


defaults 1 2 


tmpfs 


/dev/shm 


tmpfs 


defaults 


devpts 


/dev/pts 


devpts 


gid=5,mode=620 
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sysfs 


/sys sysfs 


defaults 








proc 


/proc proc 


defaults 








/dev/VolGroup00/LogVol01 


swap swap 


defaults 








/dev/sdal 


/mnt/windows vfat 


noauto 









NOTE For clarity, the long listing for each hard disk file system was removed in 
the above example. For each file system, you'll normally see an entry like /dev/ 
disk/by-id/scsi-SATA_ST3320620AS_9QF4AKJA-part2 prior to the 
mount point. 

All the file systems are mounted automatically, except for /dev/ sdal (as indicated by 
the noauto option). The root (/) and swap hard disk partitions are configured as logical 
volume management (LVM) volumes. LVM volumes can make it easier to move or join 
physical partitions, while still retaining the volume ID. Pseudo file systems (not associ- 
ated with a partition) include devpts (an interface to pty pseudo terminals), sysfs 
(information from 2.6 kernel), and proc (kernel information implemented prior to 2.6 
kernel). The /dev/sdal disk partition was added manually in this example to mount 
the Windows partition located on that device. 

The /etc/f stab file no longer typically holds information about removable media. 
That's because the hardware abstraction layer (HAL) facility automatically detects 
removable media and mounts those media in appropriate mount points in the /media 
directory (based on such things as volume ID on the media). 

Table 7-2 describes each field in the /etc/ f stab file. 



Table 7-2: Fields in /etc/fstab File 



Field Description 



The device name representing the file system. Originally, this contained the device 
name of the partition to mount (such as /dev/sdal). It can now also contain a 
LABEL or universally unique identifier (UUID), instead of a device name. Most 
disks onSUSE show an entry something like /dev/disk/by-id/scsi-SATA_ 
ST3 32 62 0AS_9QF4AKJA-part. 

The mount point in the file system. The file system contains all data from the 
mount point down the directory tree structure, unless another file system is 
mounted at some point beneath it. 

The file system type. See Table 7-1 for a list of many common file system types. 

The mount command options. Examples of mount options include noauto (to pre- 
vent the file system from mounting at boot time) and ro (to mount the file system 
read-only). To let any user mount a file system, you could add the user or owner 
option to this field. Commas must separate options. See the mount command man- 
ual page (under the -o option) for information on other supported options. 



Continued 
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Table 7-2: Fields in /etc/fstab File (continued) 



Field Description 



Dump file system? This field is only significant if you run backups with dump . 
A number 1 signifies that the file system needs to be dumped. A zero means that 
it doesn't. 

File system check? The number in this field indicates whether or not the file system 
needs to be checked with f sck. A zero indicates that the file system should not be 
checked. A number 1 means that the file system needs to be checked first (this is used 
for the root file system). A number 2 assumes that the file system can be checked at 
any point after the root file system is checked. 



You can create your own entries for any hard disk or removable media partitions you 
want in the /etc/fstab file. Remote file systems (NFS, Samba, and others) can also 
contain entries in the /etc/fstab file to automatically mount those file systems at 
boot time or later by hand. 

Mounting File Systems 
with the mount Command 

The mount command is used to view mounted file systems, as well as mount any 
local (hard disk, USB drive, CD, DVD, and so on) or remote (NFS, Samba, and so on) 
file systems. Here is an example of the mount command for listing mounted file systems: 

$ mount List mounted remote and local file systems 

/dev/sda7 on / type ext3 (rw, acl ,user_xattr) 

proc on /proc type proc (rw) 

sysfs on /sys type sysfs (rw) 

devpts on /dev/pts type devpts (rw,mode=0620 , gid=5} 

/dev/sda6 on /mnt/debian type ext3 (rw) 

/dev/sda3 on /mnt/slackware type ext3 (rw) 

tmpfs on /dev/shm type tmpfs (rw) 

none on /proc/sys/f s/binfmt_misc type binfmt_misc (rw) 

sunrpc on /var/lib/nf s/rpc_pipefs type rpc_pipefs (rw) 

Use the - 1 option to list only mounts of a specific file system type: 

$ mount -t ext3 List mounted ext3 file systems 

/dev/sda7 on / type ext3 (rw, acl ,user_xattr) 
/dev/sda6 on /mnt/debian type ext3 (rw) 
/dev/sda3 on /mnt/slackware type ext3 (rw) 

To display partition labels with mount information, use the -1 option: 

$ mount -t ext3 -1 List mounted ext3 file systems and labels 

/dev/sda7 on / type ext3 (rw) [/123] 

/dev/sda6 on /mnt/debian type ext3 (rw) [/mnt/debian] 

/dev/sda3 on /mnt/slackware type ext3 (rw) [/mnt/slackware] 
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Here is a simple mount command to mount the /dev/sdal device on an existing direc- 
tory named /mnt/mymount: 

# mount /dev/sdal /mnt/mymount/ Mount a local file system 

# mount -v /dev/sdal /mnt/mymount/ Mount file system, more verbose 
mount: you didn't specify a filesystem type for /dev/sdal 

I will try type ext3 

/dev/sdal on /mnt/mymount type ext3 (rw) 

In the examples above, the mount command will either look for an entry for /dev/sdal 
in the /etc/fstab file or try to guess the type of file system. 

Use - 1 to explicitly indicate the type of file system to mount: 

# mount -v -t ext3 /dev/sdal /mnt/mymount/ Mount an ext3 file system 
/dev/sdal on /mnt/mymount type ext3 (rw) 

You can also display the label/name of the partition that is mounted: 

# mount -vl -t ext3 /dev/sdal /mnt/mymount/ Mount file system/show label 

If you're mounting something that is listed in your f stab file already, you only need to 
specify one item: mount point or device. For example, with the following f stab entry: 

/dev/sdal /mnt/mymount ext3 defaults 1 2 

you can do either of the following to mount the file system: 

# mount -v /dev/sdal Mount file system with device name only 
/dev/sdal on /mnt/mymount type ext3 (rw) 

# mount -v /mnt/mymount/ Mount file system with mount point only 
/dev/sdal on /mnt/mymount type ext3 (rw) 

You can specify mount options by adding -o and a comma-separated list of options. They 
are the same options you can add to field 4 of the /etc/fstab file. By default, parti- 
tions are mounted with read/write access. You can explicitly indicate to mount a file 
system as read/write (rw) or read-only (ro): 

# mount -v -t ext3 -o rw /dev/sdal /mnt/mymount/ Mount read/write 
/dev/sdal on /mnt/mymount type ext3 (rw) 

# mount -v -t ext3 -o ro /dev/sdal /mnt/mymount/ Mount read-only 
/dev/sdal on /mnt/mymount type ext3 (ro) 

A few other useful mount options you can use include: 

□ noatime — Does not update the access time on files. Good on file systems with a 
lot of I/O, such as mail spools and logs. 

□ no exec — Prevents execution of binaries located on this file system. Can be used 
to increase security, for example for /tmp in environments with untrusted users. 
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□ remount — Change options on a mounted file system. With remount, you 
can unmount the file system and remount it with the new options in a single 
command. In this example, we change a previous read /write mount to 
read-only: 

# mount -v -o remount , ro /dev/sdal 

/dev/sdal on /mnt/mymount type ext3 (ro) 

□ --bind — Mount an existing file system to another location in the tree. Assuming 
/dev/sdal is already mounted on /mnt/mymount, type the following: 

# mount --bind -v /mnt/mymount/ /tmp/mydir/ 

/mnt/mymount on /tmp/mydir type none (rw,bind) 

Now the same file system is accessible from two locations. The new mount point 
has the same mount options as the original. 

□ --move — Move a file system from one mount point to another. Assuming 
/dev/sdal is already mounted on /mnt/mymount, this moves the file system 
to /tmp/mydir: 

# mount -v --move /mnt/mymount/ /tmp/mydir/ 

/mnt/mymount on /tmp/mydir type none (rw) 

Just like you can swap to a file, you can create a file system in a file and then mount 
it in what is called a loopback mount. Creating and mounting such a file is described 
in the "Creating a Virtual File System" section earlier in this chapter. A common situa- 
tion where you might want to mount a file in loopback is after downloading a Linux install 
CD or LiveCD. By mounting that CD image in loopback, you can view its contents or 
copy files from that image to your hard disk. 

In the following example, the mount command is allowed to automatically pick an 
existing loopback device when mounting a CD image file (file system type iso9660). 
The command output shows /dev/loopO was selected: 

# mount -v -t iso9660 -o loop /tmp/myimage.iso /mnt/mymount/ 

mount: going to use the loop device /dev/loopO 
/tmp/myimage.iso on /mnt/mymount type ext3 (rw, loop=/dev/loopO) 

To see the status of the loopback devices, use the losetup command: 

# losetup -a List mounted loopback devices 
/dev/loopO: [0807]:1009045 ( / tmp/diskboot . img) 

If a loopback mount gets "stuck" and you have problems during unmount, try 
detaching it as follows: 

# losetup -d /dev/loopl Force unmount of a mounted loopback device 
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NOTE The mount command can also be used to attach to NFS, or Samba/ 
Windows CIFS shares. See Chapter 12 for information on mounting those remote 
file system types. 

Unmounting File Systems with umount 

To unmount a file system, use the umount command. You can umount the file system using 
the device name or the mount point. You're better off umounting with the mount point, 
to avoid the confusion when using bind mounts (one device, multiple mount points). 
Here is an example of each, with verbosity on: 

# umount -v /dev/sdal Unmount by device name 
/dev/sdal umounted 

# umount -v /mnt/mymount/ Unmount by mount point 
/tmp/diskboot . img umounted 

If the device is busy, the unmount will fail. A common reason for an unmount to fail is 
that you have a shell open with the current directory of a directory inside the mount: 

# umount -v /mnt/mymount/ 

umount: /mnt/mymount: device is busy 
umount: /mnt/mymount: device is busy 

Sometimes, it's not obvious what makes the device busy. You can use lsof to list open 
files, then search that list for the mount point that interests you: 

# lsof I grep mymount Find open files on mymount partition 
bash 9341 francois cwd DIR 8,1 1024 2 /mnt/mymount 

You can see that a bash process run by francois with a PID of 9341 is preventing the 
mymount partition from being unmounted. 

Another option when a file system is busy is to perform a lazy unmount: 

# umount -vl /mnt/mymount/ Perform a lazy unmount 

A lazy unmount unmounts the file system from the tree now, but waits for the device 
to no longer be busy before cleaning up everything. Unmounts of removable media 
can also be done with eject. This unmounts a CD and ejects the CD from the drive: 

# eject /dev/cdrom Unmount and eject a CD 



Checking File Systems 



In Linux, instead of just having the scandisk utility you have in Windows, you can 
scan a physical device for bad blocks at a physical level with the badblocks command 
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and scan a file system for errors at the logical level with the f sck command. Here's how 
to scan for bad blocks: 

# badblocks /dev/sdal Physically scan hard disk for bad blocks 

# badblocks -v /dev/sdal Add verbosity to hard disk scan 
Checking blocks to 200781 

Checking for bad blocks {read-only test) : done 
Pass completed, bad blocks found. 

By default, badblock does a safe read-only test of the blocks. You can also perform a 
non-destructive read/write test. This is the slowest test, but the best one you can per- 
form without destroying the data on the device. Add -s to see the ongoing progress: 

# badblocks -vsn /dev/sdal Check bad blocks, non-destructive 
Checking for bad blocks in non-destructive read-write mode 

From block to 200781 

Testing with random pattern: Pass completed, bad blocks found. 

The following command performs a faster, destructive read-write test: 

WARNING! This will erase all the data on the partition. 

# badblocks -vsw /dev/sdal Check bad blocks, destructive 
Checking for bad blocks in read-write mode 

From block to 200781 

Testing with pattern Oxaa: done 

Reading and comparing : done 

Testing with pattern 0x55: done 

Reading and comparing : done 

Testing with pattern Oxff: done 

Reading and comparing : done 

Testing with pattern 0x00: done 

Reading and comparing : done 

Pass completed, bad blocks found. 

You can perform multiple badblocks passes; for example, this command line can be used to 
burn in a drive and screen for hard drive infant mortality: 

# badblocks -vswp 2 /dev/sdal 

Like the mkf s command, the f sck command is just a front end to file-system-specific 
utilities. You can check an ext3 file system by simply adding the device name of the disk 
partition you want to check to the f sck command: 

# fsck /dev/sdal 

fsck 1.39 (29-May-2006) 

e2fsck 1.39 (29-May-2006) 

mypart has gone 18 days without being checked, check forced. 



Pass 1 
Pass 2 
Pass 3 
Pass 4 



Checking inodes, blocks, and sizes 
Checking directory structure 
Checking directory connectivity 
Checking reference counts 
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Pass 5: Checking group summary information 

mypart: 11/50200 files (9.1% non-contiguous), 12002/200780 blocks 

You can add other options to f sck, such as -T (to not display the useless f sck version 
number) and -V (to be more verbose about what f sck actually does): 

# fsck -TV /dev/sdal Check file system (verbose and no version) 
[/sbin/fsck. ext3 (1) -- /dev/sdal] fsck.ext3 /dev/sdal 

e2fsck 1.39 (29-May-2006) 

mypart: clean, 11/50200 files, 12002/200780 blocks 

For any problem that fsck encounters, it will ask you if you want to repair it: 

# fsck -TV /dev/sdal Prompting to correct problems encountered 

[/sbin/fsck. ext3 (1) -- /mnt/mymount] fsck.ext3 /dev/sdal 
e2fsck 1.39 (29-May-2006) 

Couldn't find ext2 superblock, trying backup blocks... 
Resize inode not valid. Recreate<y>? y 

Unless you have a very in-depth knowledge of file systems, you're better off answering 
yes. This can be done automatically with the -y option: 

# fsck -TVy /dev/sdal 

[/sbin/fsck. ext3 (1) -- /mnt/mymount] fsck.ext3 -y /dev/sdal 

e2fsck 1.39 (29-May-2006) 

Couldn't find ext2 superblock, trying backup blocks... 

Resize inode not valid. Recreate? yes 

mypart was not cleanly unmounted, check forced. 

Pass 1: Checking inodes, blocks, and sizes 

Pass 2: Checking directory structure 

Pass 3: Checking directory connectivity 

Pass 4: Checking reference counts 

Pass 5: Checking group summary information 

Free blocks count wrong for group #0 (3552, counted=3553 ) . 

Fix? yes 

Free blocks count wrong (188777, counted=188778) . 

Fix? yes 

mypart: ***** FILE SYSTEM WAS MODIFIED ***** 

mypart: 11/50200 files (0.0% non-contiguous), 12002/200780 blocks 



Checking RAID Disks 



Redundant Array of Independent Drives (RAID) disks let you duplicate or distribute 
data across multiple hard drives. Using RAID can improve reliability and performance 
of your storage media. The mdadm command, which is part of the mdadm package, can 
be used to check softraid devices on your computer. Here's an example: 

# mdadm -Q /dev/mdl 

/dev/mdl: 1498.13MiB raidl 2 devices, spares. 

Use mdadm --detail for more detail, 
/dev/mdl: No md super block found, not an md component. 
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The message on the last line simply means that /dev/mdl is not a member of a RAID 
array. That is normal, since mdl is the array itself. Similarly if you query a member of 
a RAID array your output will look like this: 



# mdadm -Q /dev/sdb3 

/dev/sdb3 : is not an md array 

/dev/sdb3 : device 1 in 4 device active raid6 mdO . 

detail . 



Use mdadm --examine for more 



To obtain more detailed output, add the --detail option: 



# mdadm -Q — detail /dev/mdl 






/dev/mdl : 








Version 


00.90.01 






Creation Time 


Fri Dec 8 16 


32 


12 2006 


Raid Level 


raidl 






Array Size 


1534080 (1498 


38 


MiB 1570.90 MB 


Device Size 


1534080 (1498 


38 


MiB 1570.90 MB 


Raid Devices 


2 






Total Devices 


2 






Preferred Minor 


1 






Persistence 


Superblock is 


persistent 


Update Time 


Sun Uun 17 02 


06 


01 2007 


State 


clean 






Active Devices 


2 






Working Devices 


2 






Failed Devices 









Spare Devices 










UUID : 49c564cc:2d3c9al4:d93celc9:070663ca 
Events : 0.42 



Number 


Major 


Minor 





3 


2 


1 


3 


66 



RaidDevice State 

active sync /dev/hda2 

1 active sync /dev/hdb2 



The mdadm command can also be used to manage your softraid devices. For more 
info, run the following: 



# mdadm --manage -help 
$ man mdadm 



NOTE If you use 3ware/AMCC hardware RAID controllers, which are our 
favorite for SATA RAID, make sure you install 3ware Disk Manager (3dm2), 
which is available in rpm form from ATrpms.net. The 3dm2 utility provides a 
monitoring daemon and a web GUI. 
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Finding Out About File System Use 

Running out of disk space can be annoying on your desktop system and potentially 
a disaster on your servers. To determine how much disk space is available and how 
much is currently in use, you can use the df command. To check how much space 
particular files and directories are consuming, use the du command. 

The df command provides utilization summaries of your mounted file systems. Using the -h 
option, you can have the data (which is shown in bytes by default) converted to 
megabytes (m) and gigabytes (g), to make that output more human-readable: 

$ df -h Display space on file systems in human-readable form 



Filesystem 




Size 


Used 


Avail 


Use% 


Mounted on 


/dev/sda2 




7.6G 


3.4G 


3.9G 




47% 


/ 


/dev/sdal 




99M 


14M 


80M 




15% 


/boot 


tmpf s 




501M 





501M 




0% 


/dev/shm 


/dev/sda5 




352G 


197G 


137G 




59% 


/home 


//thompson 


/ chris 


9204796 


5722608 


3007068 


66% 


/mnt/mymount 



Because ext file systems have only so many modes created at mkf s time, if you have 
lots of small files, you can possibly run out of modes before you run out of actual space. 
To check inode utilization, use the -i option: 



$ df -hi 








Filesystem 


Inodes 


IUsed 


IFree IUse% Mounted on 


/dev/sda2 


2.0M 


108K 


1.9M 6% / 



If you have network mounts (such as Samba or NFS), these will show up too in your 
df output. To limit df output to local file systems, type the following: 

$ df -hi Display disk space only for local file systems 

To add the file system type to the listing, use the -T option: 

$ df -hT Add file system type information to listing 

Filesystem Type Size Used Avail Use% Mounted on 
/dev/sda7 ext3 8 . 8G 5 . 5G 2 . 9G 66% / 

To check for disk space usage for particular files or directories in a file system, use the du command. 

The following command was run as the user named francois: 

$ du -h /home/ Show disk space usage for /home directory 

du: " /home/chris ' ; Permission denied 
4 . OK /home/francois/Mail 
52K /home/ francois 
64K /home/ 
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The output shows that access to another home directory's disk use (in this case 
/home/chris) was denied for security reasons. So the next examples show how to 
avoid permission issues and get totals that are correct by using the root user account. This is clearly 
visible when we use -s to summarize. 

$ du -sh /home Regular user is denied space totals to others ' homes 

du: v /home/chris ' : Permission denied 

du: Vhome/horatiol99 ' : Permission denied 

64K /home 

# du -sh /home You can display summary disk use as root user 
1 . 6G /home 

You can specify multiple directories with the -c option and total them up: 

# du -sch /home /var Show directory and total summaries 
1 . 6G /home 

111M /var 
1.7G total 

You can exclude files that match a pattern from being counted using the exclude option. In 
the following example, disk image files (ending with the . iso suffix) are not used in 
totaling the disk space used: 

# du -sh --exclude=' *.iso' /home/chris Exclude ISO images from totals 
588M /home/chris 

You can specify what depth in the tree you want to summarize. Set - -max-depth to a num- 
ber larger than the 1 value shown, to dig deeper into disk space usage: 

# du -h --max-depth=l /home Provide disk space use, to one level deep 
1 . 6G /home/chris 

52K /home/francois 
1 . 6G /home 

# du -h --max-depth=2 /home Dig two-levels deep for disk space use 

4. OK /home/francois/Mail 
52K /home/francois 
1 . 6G /home 



Logical Volume Manager 



Logical Volume Manager (LVM) is a feature designed to help you cope with the chang- 
ing needs for disk space on your Linux systems. With your hard disks configured as 
LVM volumes, you have tremendous flexibility in growing, shrinking, and moving the 
storage space on your systems as your needs change. LVM also allows for snapshots, a 
feature typically found on expensive enterprise SANs, or Storage Area Networks. 

SUSE incorporates LVM2 into its releases and uses it to define how disk partitions are 
allocated when you first install SUSE. Using LVM2, you define and manage volume 
groups (vg), logical volumes (lv), and physical volumes (pv). Each logical volume and 
physical volume is divided into logical extents and physical extents, respectively. 
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The basic business of using LVM is to create the volume groups and logical volumes 
you need, then assign the extents (small chunks of disk space) to those areas where they 
are needed. Unlike older disk partitioning schemes, where you might have to back up 
your data, change your partitioning, then return data to the resized partitions, you can 
simply add unused extents where they are needed. 

LVM comes with a set of commands (in the lvm2 package) that can be used to work 
with LVM volumes. Step through the procedure in the following section to learn about 
many of those LVM commands. 

WARNING! To avoid messing up the hard disks your computer relies on as you 
learn LVM, we recommend you try the following examples on some non-critical 
storage device. For example, we used an inexpensive 32MB USB flash drive (on 
/dev/sdb,) to run the commands shown in this section. 



Creating LVM Volumes 



To begin, use the f disk command to create physical partitions for the storage device on which 
you want to create logical partitions. Here we have a 32MB USB flash drive, located 
on device /dev/sdb.: 

# fdisk /dev/sdb Start command to manage disk partitions 

Command (m for help): p Print current partitions (none exist) 

Disk /dev/sdb: 32 MB, 32112128 bytes 

1 heads, 62 sectors/track, 1011 cylinders 

Units = cylinders of 62 * 512 = 31744 bytes 

Device Boot Start End Blocks Id System 

Command (m for help) : n Create a new partition 

Command action 

e extended 

p primary partition (1-4) 
p Make it a primary partition 

Partition number (1-4): 1 Assigned to partition 1 
First cylinder (2-1011, default 2): Enter 
Using default value 2 

Last cylinder or +size or +sizeM or +sizeK (2-1011, default 1011): Enter 
Using default value 1011 

Command (m for help): t Assign a partition type 

Selected partition 1 

Hex code (type L to list codes): 8E Indicate 8E (LVM partition) 

Changed system type of partition 1 to 8e (Linux LVM) 

Command (m for help) : p Type p to see the new partition 

Disk /dev/sdb: 32 MB, 32112128 bytes 

1 heads, 62 sectors/track, 1011 cylinders 

Units = cylinders of 62 * 512 = 31744 bytes 

Device Boot Start End Blocks Id System 

/dev/sdbl 2 1011 31310 8e Linux LVM 
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Before proceeding, make sure you have made the correct changes to the correct parti- 
tion! If everything looks correct, write the new partition table, as follows: 

Command (m for help) : w 

The partition table has been altered! 

Calling ioctl ( ) to re-read partition table. 

Syncing disks . 

# 

Back at the shell prompt, use the sf disk command to see the partitioning on the drive: 

# sfdisk -1 /dev/sdb View the LVM partitions 

Disk /dev/sdb: 1011 cylinders, 1 heads, 62 sectors/track 

Units = cylinders of 31744 bytes, blocks of 1024 bytes, counting from 

Device Boot Start End #cyls #blocks Id System 

/dev/sdbl 1 1010 1010 31310 8e Linux LVM 

/dev/sdb2 0-0 00 Empty 

/dev/sdb3 0-0 00 Empty 

/dev/sdb4 0-0 00 Empty 

Next, make /dev/sdbl a new LVM physical volume and use the pvs command to 
view information about physical LVM volumes: 

# pvcreate /dev/sdbl Make sdbl an LVM physical volume 
Physical volume "/dev/sdbl" successfully created 

# pvs View physical LVM partitions 
PV VG Fmt Attr PSize PFree 

/dev/sdbl vgusb lvm2 a- 28.00M20.00M 

Next use vgcreate to create the vgusb volume group and list the active current vol- 
ume groups: 

$ vgcreate vgusb /dev/sdbl Create vgusb volume group 

Volume group "vgusb" successfully created 
$ vgs View current volume groups 

VG #PV #LV #SN Attr VSize VFree 

vgusb 10 wz--n- 28.00M 28.00M 

Use lvcreate to create a new LVM partition of 10M from the vgusb volume group. 
Then use lvs to see the logical volume and vgs to see that the amount of free space 
has changed: 

$ lvcreate --size 10M --name lvm_ul vgusb 

Rounding up size to full physical extent 12.00 MB 
Logical volume "lvm_ul" created 
$ lvs View the logical volume information 

LV VG Attr LSize Origin Snap% Move Log Copy% 
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lvm_ul vgusb -wi-a- 12.00M 

$ vgs See that you still have 16M free 

VG #PV #LV #SN Attr VSize VFree 

vgusb 110 wz--n- 28.00M 16.00M 

To create an ext3 file system on the lvm partition, use the mkf s . ext3 command 
as follows: 

$ mkfs.ext3 /dev/mapper/vgusb-lvm_ul 

mke2fs 1.40.2 (12-Jul-2007) Filesystem label= 
OS type ; Linux 
Block size=1024 (log=0) 
Fragment size=1024 (log=0) 
3072 inodes, 12288 blocks 

614 blocks (5.00%) reserved for the super user 
First data block=l 
Maximum filesystem blocks=12582912 
2 block groups 

8192 blocks per group, 8192 fragments per group 
1536 inodes per group 
Superblock backups stored on blocks: 
8193 

Writing inode tables: done 

Creating journal (1024 blocks) : done 

Writing superblocks and filesystem accounting information: done 

This filesystem will be automatically checked every 35 mounts or 
180 days, whichever comes first. Use tune2fs -c or -i to override. 

The ext3 file system has now been created and the LVM volume is ready to use. 



Using LVM Volumes 



To use the new volume just created, represented by /dev/mapper/vgusb-lvm_ul, 
create a mount point (/mnt/ul) and mount the volume. Then use df to check the available 
space: 

# mkdir /mnt/ul Create mount point 

# mount -t ext3 /dev/mapper/vgusb-lvm_ul /mnt/ul Mount volume 

$ df -m /mnt/ul Check disk space 

Filesystem lM-blocks Used Available Use% Mounted on 

/dev/mapper/vgusb-lvm_ul 

12 2 10 11% /mnt/ul 

At this point, the file system contains only the lost+ found directory: 

$ Is /mnt/ul 

lost+found 
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Copy a large file to the new file system. For example, choose one of the kernel files 
from the /boot directory and copy it to /mnt/ul: 

$ cp /boot/vmlinuz-* /mnt/ul/ Copy a large file to /mnt/ul 

$ df -m /mnt/ul See that 4MB is used on /mnt/ul 

Filesystem lM-blocks Used Available Use% Mounted on 
/dev/mapper/vgusb-lvm_ul 

12 4 9 27% /mnt/ul 

Run md5sum on the file you copied and save the resulting checksum for later. For 
example: 

$ md5sum /mnt/ul/vmlinuz-2. 6.22.5-29-default Check md5sum 

8d0dc0347d3 6ebd3f 6f2b49047elf 52 5 /mnt/ul/vmlinuz-2 .6.22 . 5 -2 9 -default 



Growing the LVM Volume 



Say that you are running out of space and you want to add more space to your LVM volume. 
To do that, unmount the volume and use the lvresize command. After that, you 
must also check the file system with e2f sck and run resize2fs to resize the ext3 
file system on that volume: 

# umount /mnt/ul Unmount volume 

# lvresize --size 16M /dev/vgusb/lvm_ul Resize volume 
Extending logical volume lvm_ul to 16.00 MB 

Logical volume lvm_ul successfully resized 

# e2fsck -f /dev/vgusb/lvm_ul 

e2fsck 1.40.2 (12-Jul-2007) Pass 1: Checking inodes, blocks, and sizes 

Pass 2 : Checking directory structure 

Pass 3: Checking directory connectivity 

Pass 4: Checking reference counts 

Pass 5: Checking group summary information 

/dev/vgusb/lvm_ul: 12/3072 files (25.0% non-contiguous), 3379/12288 blocks 

# resize2£s /dev/vgusb/lvm_ul 16M Resize file system 
resize2fs 1.40.2 (12-Jul-2007}Resizing the filesystem on /dev/vgusb/lvm_ul to 
16384 (Ik) blocks. 

The filesystem on /dev/vgusb/lvm_ul is now 16384 blocks long. 

In the example just shown, the volume and the file system are both resized to 16M. 
Next, mount the volume again and check the disk space and the md5sum you cre- 
ated earlier: 

# mount -t ext3 /dev/mapper/vgusb-lvm_ul /mnt/ul Remount volume 

$ df -m /mnt/ul See 4MB of 16MB used 

Filesystem lM-blocks Used Available Use% Mounted on 

/dev/mapper/vgusb-lvm_ul 

16 4 13 20% /mnt/ul 

$ md5sum /mnt/ul/vmlinuz-2. 6.22.5-29-default Recheck md5sum 
8d0dc0347d3 6ebd3f 6f2b49047elf 52 5 /mnt/ul/vmlinuz-2 .6.22 . 5 -2 9 -default 
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The newly mounted volume is now 16MB instead of 10MB in size. 



Shrinking an LVM Volume 



You can also use the lvresize command if you want to take unneeded space from an exist- 
ing LVM volume. As before, unmount the volume before resizing it and run e2 f sck (to 
check the file system) and resize2 f s (to resize it to the smaller size): 

# umount /mnt/ul 

$ e2fsck -f /dev/vgusb/lvm_ul 

e2fsck 1.40.2 (12-Jul-2007)The filesystem size (according to the superblock} is 

16384 blocks 

The physical size of the device is 8192 blocks 

Pass 1: Checking inodes, blocks, and sizes 

/dev/vgusb/lvm_ul : 12/3072 files (8.3% non-continguous, 3531/16384 blocks 

# resize2fs /dev/vgusb/lvm_ul 12M Resize file system 
resize2fs 1.40.2 (12-Jul-2007) 

Resizing the filesystem on /dev/vgusb/lvm_ul to 12288 (Ik) blocks. 
The filesystem on /dev/vgusb/lvm_ul is now 12288 blocks long. 

# lvresize --size 12M /dev/vgusb/lvm_ul 

WARNING: Reducing active logical volume to 12.00 MB 
THIS MAY DESTROY YOUR DATA (filesystem etc.) 
Do you really want to reduce lvm_ul? [y/n] ; y 
Reducing logical volume lvm_ul to 8.0 MB 
Logical volume lvm_ul successfully resized 

# mount -t ext3 /dev /mapper /vgusb-lvm_ul /mnt/ul Remount volume 

$ df -m /mnt/ul See 4MB of 12MB used 

Filesystem lM-blocks Used Available Use% Mounted on 

/dev/mapper/vgusb-lvm_ul 

12 4 9 20% /mnt/ul 

The newly mounted volume appears now as 12MB instead of 16MB in size. 

Removing LVM Logical Volumes and Groups 

To remove an LVM logical volume from a volume group, use the lvremove command as follows: 

# lvremove /dev/vgusb/lvm_ul 

Do you really want to remove active logical volume "lvm_ul"? [y/n]: y 
Logical volume "lvm_ul" successfully removed 

To remove an existing LVM volume group, use the vgremove command: 

# vgremove vgusb 

Volume group "vgusb" successfully removed 

There are many more ways to work with LVM. Refer to the LVM HOWTO for further 
information (http: //tldp. org/HOWTO/LVM-HOWTO/). 
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Summary 



Creating and managing file systems in Linux is a critical part of Linux system admin- 
istration. Linux contains support for several standard Linux file system types (ext2, 
ext3, reiserfs, and others). It can also create and manage Windows file system types 
(VFAT, NTFS, and so on) as well as legacy and specialty Linux and Unix file system 
types (such as minix, jfs, and xfs). 

You can partition hard disks with commands such as f disk and parted. Tools for work- 
ing with file systems include those that create file systems (mkf s), view and modify file 
system attributes (tune2f s and dumpe2f s), mount/unmount file systems (mount and 
umount), and check for problems (badblocks and f sck). To see how much space has 
been used in file systems, use the df and du commands. 
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8 

Backups and 
Removable Media 



Data backups in Linux were traditionally done 
by running commands to archive and compress 
the files to back up, then writing that backup 
archive to tape. Choices for archive tools, com- 
pression techniques, and backup media have 
grown tremendously in recent years. Tape 
archiving has, for many, been replaced with 
techniques for backing up data over the net- 
work, to other hard disks, or to CDs, DVDs, 
or other low-cost removable media. 

This chapter details some useful tools for backing 
up and restoring your critical data. The first part 
of the chapter details how to use basic tools such 
as tar, gzip, and rsync for backups. 



Backing Up Data to 
Compressed Archives 



IN THIS CHAPTER 

Creating backup 
archives with tar 

Compressing 
backups with gzip, 
bzip2, and Izop 

Backing up over the 
network with SSH 

Doing network back- 
ups with rsync 

Making backup ISO 
images with mkisofs 

Burning backup 
images to CD or 
DVD with cdrecord 
and growisofs 



If you are coming from a Windows background, 

you may be used to tools such as WinZip and PKZIP, which both archive 
and compress groups of files in one application. Linux offers separate 
tools for gathering groups of files into a single archive (such as tar) and 
compressing that archive for efficient storage (gzip, bzip2, and lzop). 
However, you can also do the two steps together by using additional 
options to the tar command. 



Creating Backup Archives with tar 

The tar command, which stands for tape archiver, dates back to early Unix 
systems. Although magnetic tape was the common medium that tar wrote 
to originally, today tar is most often used to create an archive file that can 
be distributed to a variety of media. 
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The fact that the tar command is rich in features is reflected in the dozens of options 
available with tar. The basic operations of tar, however, are used to create a backup 
archive (-c), extract files from an archive (-x), compare differences between archives 
(-d), and update files in an archive (-u). You can also append files to (-r or -A) or 
delete files from (-d) an existing archive, or list the contents of an archive (-t). 

NOTE Although the tar command is available on nearly all Unix and Linux 
systems, it behaves differently on many systems. For example, Solaris does not 
support -z to manage tar archives compressed in gzip format. The star (ess-tar) 
command supports access control lists (ACLs) and file flags (for extended permis- 
sions used by Samba). 

As part of the process of creating a tar archive, you can add options that compress the 
resulting archive. For example, add - j to compress the archive in bzip2 format or -z 
to compress in gzip format. By convention, regular tar files end in . tar, while com- 
pressed tar files end in . tar . bz2 (compressed with bzip2) or . tar . gz (compressed 
with gzip). If you compress a file manually with lzop (see www . lzop . org), the com- 
pressed tar file should end in . tar . lzo. 

Besides being used for backups, tar files are popular ways to distribute source code 
and binaries from software projects. That's because you can expect every Linux and 
Unix-like system to contain the tools you need to work with tar files. 

NOTE One quirk of working with the tar command comes from the fact that 
tar was created before there were standards regarding how options are entered. 
Although you can prefix tar options with a dash, it isn't always necessary. So you 
might see a command that begins tar xvf with no dashes to indicate the options. 

A classic example for using the tar command might combine old-style options and 
pipes for compressing the output; for example: 

$ tar c *.txt | gzip -c > myf iles.tar.gz Make archive, zip it, and output 

The example just shown illustrates a two-step process you might find in documenta- 
tion for old Unix systems. The tar command creates (c) an archive from all . txt files 
in the current directory. The output is piped to the gzip command and output to std- 
out (-c), and then redirected to the myf iles . tar . gz file. Note that tar is one of the 
few commands which don't require that options be preceded by a dash (-). 

New tar versions, on modern Linux systems, can create the archive and compress the output 
in one step: 

$ tar czf myf iles. tar. gz *.txt Create gzipped tar file of .txt files 
$ tar czvf myf iles.tar.gz *.txt Be more verbose creating archive 
textf ilel . txt 
textf ile2 . txt 
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In the examples just shown, note that the new archive name (myf iles . tar . gz) must 
immediately follow the f option to tar (which indicates the name of the archive). 
Otherwise the output from tar will be directed to stdout (in other words, your screen). 
The z option says to do gzip compression, and v produces verbose descriptions of 
processing. 

When you want to return the files to a file system (unzipping and untarring), you can also 
do that as either a one-step or two-step process, using the tar command and optionally 
the gunzip command: 

$ gunzip -c myf iles. tar .gz | tar x Unzips and untars archive 

Or try the following command line instead: 

$ gunzip myf iles. tar. gz ; tar xf myf iles. tar Unzips then untars archive 

To do that same procedure in one step, you could use the following command: 

$ tar xzvf myf iles. tar. gz 

textf ilel . txt 
textfile2.txt 

The result of the previous commands is that the archived . txt files are copied from 
the archive to the current directory. The x option extracts the files, z uncompresses 
(unzips) the files, v makes the output, and f indicates that the next option is the name 
of the archive file (myf iles . tar . gz). 



Using Compression Tools 



Compression is an important aspect of working with backup files. It takes less disk 
space on your backup medium (CD, DVD, tape, and so on) or server to store com- 
pressed files. It also takes less time to transfer the archives to the media or download 
the files over a network. 

While compression can save a lot of storage space and transfer times, it can signifi- 
cantly increase your CPU usage. You can consider using hardware compression on a 
tape drive (see www. amanda.org/ docs /faq.html#id3 46016). 

In the examples shown in the previous section, tar calls the gzip command. But 
tar can work with many compression tools. Out of the box on SUSE, tar will work 
with gzip and bzip2. A third compression utility we add to our toolbox is the lzop 
command, which can be used with tar in a different way. The order of these tools 
from fastest/least compression to slowest/most compression is: lzop, gzip, and 
bzip2. 
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If you are archiving and compressing large amounts of data, the time it takes to com- 
press your backups can be significant. So you should be aware that, in general, bzip2 
may take about 10 times longer than lzop and only give you twice the compression. 
However, with each compression command, you can choose different compression lev- 
els, to balance the need for more compression with the time that compression takes. 

To use the tar command with bzip2 compression, use the - j option: 

$ tar cjvf myf iles.tar .bz2 *.txt Create archive, compress with bzip2 

You can also uncompress (-j) a bzip2 compressed file as you extract files (-x) using the tar 
command: 

$ tar xjvf myfiles.tar .bz2 Extract files, uncompress bzip2 compression 

The lzop compression is a bit less integrated into tar. Before you can use lzop, you 
need to install the lzop program. You can download a statically linked pre-built ver- 
sion of the program, as well as the program sources, from www . lzop . org. The packman 
repository, covered in Chapter 3, includes a package of lzop for SUSE 10.0. By the final 
release of SUSE 10.3, you should also be able to download a SUSE package for lzop. 
Once installed, to do lzop compression, you need the --use-compress-program option: 

$ tar --use-compress-program=lzop -cf myf iles.tar. lzo *.txt 
$ tar --use-compress-program=lzop -xf myf iles.tar. lzo 

In the previous examples, the command line reverses the old syntax of tar with a 
switch before the command. For normal use and in other examples, we used the 
modern syntax of tar with no switch. 

NOTE You may encounter .rar compressed files in the RAR format. This format 
seems to be popular in the world of peer-to-peer networks. RAR is a proprietary 
format so there is no widespread compressing tool. The packman repository has a 
rar RPM package for some versions of SUSE. 

Compressing with gzip 

As noted, you can use any of the compression commands alone (as opposed to within the tar 
command line). Here are some examples of the gzip command to create and work 
with gzip-compressed files: 

$ gzip myfile gzips my file and renames it myfile.gz 

The following command provides the same result, with verbose output: 

$ gzip -v myfile gzips myfile with verbose output 

myfile: 86.0% -- replaced with myfile.gz 

$ gzip -tv myfile.gz Tests integrity of gzip file 

myfile.gz: OK 
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$ gzip -Iv myfile.gz Get detailed info about gzip file 

method crc date time compressed uncompressed ratio uncompressed_name 

defla 0f27d9e4 Jul 10 04:48 46785 334045 86.0% myfile 

Use any one of the following commands to compress all files in a directory: 

$ gzip -rv mydir Compress all files in a directory 

mydir/f ilel : 39.1% -- replaced with mydir/f ilel .gz 

mydir/file2: 39.5% -- replaced with mydir/f ile2 .gz 

$ gzip -1 myfile Fastest compression time, least compression 

$ gzip -9 myfile Slowest compression time, most compression 

Add a dash before a number from 1 to 9 to set the compression level. As illustrated 
above, - 1 is the fastest (least) and - 9 is the slowest (most) compression. The default 
for gzip is level 6. The lzop command has fewer levels: 1, 3 (default), 7, 8, and 9. 
Compression levels for bzip2 behave differently. 

To uncompress a gzipped file, you can use the gunzip command. Use either of the follow- 
ing examples: 

$ gunzip -v myfile.gz Unzips myfile.gz and renames it myfile 

myfile.gz: 86.0% -- replaced with myfile 

$ gzip -dv myfile.gz Same as previous command line 

Although the examples just shown refer to zipping regular files, the same options can 
be used to compress tar archives. 

Compressing with bzip2 

The bzip2 command is considered to provide the highest compression among the com- 
pression tools described in this chapter. Here are some examples of bzip2: 

$ bzip2 myfile Compresses file and renames it myfile. bz2 

$ bzip2 -v myfile Same as previous command, but more verbose 

myfile: 9.529:1, 0.840 bits/byte, 89.51% saved, 334045 in, 35056 out. 

$ bunzip2 myfile. bz2 Uncompresses file and renames it myfile 

$ bzip2 -d myfile. bz2 Same as previous command 

$ bunzip2 -v myfile. bz2 Same as previous command, but more verbose 

myfile. bz2: done 

Compressing with lzop 

The lzop command behaves differently from gzip and bzip2. The lzop command is 
best in cases where compression speed is more important than the resulting compres- 
sion ratio. When lzop compresses the contents of a file, it leaves the original file intact 
(unless you use -u), but creates a new file with a . lzo suffix. Use either of the follow- 
ing examples of the lzop command to compress a file called myfile: 

$ lzop -v myfile Leave myfile, create compressed myfile. lzo 

compressing myfile into myfile. lzo 

$ lzop -U myfile Remove myfile, create compressed myfile. lzo 
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With myfile.lzo created, choose any of the following commands to test, list, or uncompress 
the file: 

$ lzop -t myfile.lzo Test the compressed file's integrity 

$ lzop --info myfile.lzo List internal header for each file 

$ lzop -1 myfile.lzo List compression info for each file 

method compressed uncompr. ratio uncompressed_name 

LZ01X-1 59008 99468 59.3% myfile 

$ lzop --Is myfile.lzo Show contents of compressed file as Is -1 

$ cat myfile | lzop > x.lzo Compress standin and direct to stdout 

$ lzop -dv myfile.lzo Leave myfile.lzo, make uncompressed myfile 

Unlike gzip and bzip2, lzop has no related command for unlzopping. Always just use 
the -d option to lzop to uncompress a file. If fed a list of file and directory names, the 
lzop command will compress all files and ignore directories. The original file name, 
permission modes, and timestamps are used on the compressed file as were used on 
the original file. 

Listing, Joining, and Adding Files 
to tar Archives 

So far, all we've done with tar is create and unpack archives. There are also options 
for listing the contents of archives, joining archives, adding files to an existing archive, 
and deleting files from an archive. 

To list an archive's contents, use the -t option: 

$ tar tvf myfiles.tar List files from uncompressed archive 

-rw-r--r— root/root 9584 2007-07-05 11:20:33 textfilel.txt 

-rw-r-r- root/root 9584 2007-07-09 10:23:44 textfile2.txt 
$ tar tzvf myfiles.tgz List files from gzip compressed archive 

If the archive were a tar archive compressed with lzop and named myfile . tar . lzo, 
you could list that tar/lzop file's contents as follows: 

$ tar --use-compress-program=lzop -tf myfiles.tar. lzo List lzo archives 

To concatenate one tar file to another, use the -A option. The following command results in 
the contents of archive2 . tar being added to the archivel . tar archive: 

$ tar -Af archivel. tar archive2.tar 

Use the -r option to add one or more files to an existing archive. In the following example, 
myfile is added to the archive . tar archive file: 

$ tar rvf archive. tar myfile Add a file to a tar archive 

You can use wildcards to match multiple files to add to your archive: 

$ tar rvf archive. tar *.txt Add multiple files to a tar archive 
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Deleting Files from tar Archives 

If you have a tar archive file on your hard disk, you can delete files from that archive. 
Note that you can't use this technique to delete files from tar output on magnetic tape. 
Here is an example of deleting files from a tar archive: 

$ tar --delete filel.txt -f myfile.tar Delete filel.txt from myfile. tar 



Backing Up Over Networks 



After you have backed up your files and gathered them into a tar archive, what do 
you do with that archive? The primary reason for having a backup is in case some- 
thing happens (such as a hard disk crash) where you need to restore files from that 
backup. Methods you can employ to keep those backups safe include: 

□ Copying backups to removable media such as tape, CD, or DVD (as described 
later in this chapter) 

□ Copying them to another machine over a network 

Fast and reliable networks, inexpensive high-capacity hard disks, and the security that 
comes with moving your data off-site have all made network backups a popular prac- 
tice. For an individual backing up personal data or a small office, combining a few sim- 
ple commands may be all you need to create efficient and secure backups. This approach 
represents a direct application of the Unix philosophy: joining together simple programs 
that do one thing to get a more complex job done. 

Although just about any command that can copy files over a network can be used to 
move your backup data to a remote machine, some utilities are especially good for 
the job. Using OpenSSH tools such as ssh and scp, you can set up secure password- 
less transfers of backup archives and encrypted transmissions of those archives. 

Tools such as the rsync command can save resources by backing up only files (or parts 
of files) that have changed since the previous backup. With tools such as unison, you 
can back up files over a network from Windows, as well as Linux systems. 

The following sections describe some of these techniques for backing up your data to 
other machines over a network. 

NOTE A similar tool that might interest you is the rsnapshot command (yum 
install rsnapshot). The rsnapshot command (www. rsnapshot . org/) 
can work with rsync to make configurable hourly, daily, weekly, or monthly snap- 
shots of a file system. It uses hard links to keep a snapshot of a file system, which it 
can then sync with changed files. 

Backing Up tar Archives Over ssh 

OpenSSH (www . opens sh . org/) provides tools to securely do remote login, remote 
execution, and remote file copy over network interfaces. By setting up two machines 
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to share encryption keys, you can transfer files between those machines without enter- 
ing passwords for each transmission. That fact lets you create scripts to back up your 
data from an SSH client to an SSH server, without any manual intervention. 

From a central Linux system, you can gather backups from multiple client machines using 
OpenSSH commands (installed by default on SUSE). The following example runs 
the tar command on a remote site (to archive and compress the files), pipes the tar 
stream to standard output, and uses the ssh command to catch the backup locally 
(over ssh) with tar: 

$ mkdir mybackup ; cd mybackup 

$ ssh francois@serverl 'tar cf - myf ile* ' [ tar xvf - 

francois@serverl ' s password: ****** 
myf ilel 
myf ile2 

In the example just shown, all files beginning with myf ile are copied from the home 
directory of francois on serverl and placed in the current directory. Note that the left 
side of the pipe creates the archive and the right side expands the files from the archive 
to the current directory. (Keep in mind that ssh will overwrite local files if they exist, 
which is why we created an empty directory in the example.) 

To reverse the process and copy files from the local system to the remote system, we run a local 
tar command first. This time, however, we add a cd command to put the files in the 
directory of our choice on the remote machine: 

$ tar cf - myfile* | ssh £rancois@serverl \ 

■cd /home/francois/myf older; tar xvf -' 

francois@serverl ' s password: ****** 
myf ilel 
myf ile2 

In this next example, we're not going to untar the files on the receiving end, but 
instead write the results to tgz files: 

$ ssh francois@serverl 'tar czf - myfile*' | cat > myfiles.tgz 
$ tar cvzf - myfile* | ssh francois@serverl 'cat > myfiles.tgz 1 

The first example takes all files beginning with myfile from the francois user's home 
directory on serverl, tars and compresses those files, and directs those compressed 
files to the myf iles . tgz file on the local system. The second example does the reverse 
by taking all files beginning with myf ile in the local directory and sending them to a 
my files, tgz file on the remote system. 

The examples just shown are good for copying files over the network. Besides provid- 
ing compression they also enable you to use any tar features you choose, such as incre- 
mental backup features. 
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Backing Up Files with rsync 



A more feature-rich command for doing backups is rsync. What makes rsync so 
unique is the rsync algorithm, which compares the local and remote files one small 
block at a time using checksums, and only transfers the blocks that are different. This 
algorithm is so efficient that it has been reused in many backup products. 

The rsync command can work either on top of a remote shell (ssh), or by running an 
rsyncd daemon on the server end. The following example uses rsync over ssh 
to mirror a directory: 

$ rsync -avz --delete chris@serverl : /home/chris/pics/ chrispics/ 

The command just shown is intended to mirror the remote directory structure (/home/ 
chris/pics/) on the local system. The -a says to run in archive mode (recursively 
copying all files from the remote directory), the -z option compresses the files, and -v 
makes the output verbose. The --delete tells rsync to delete any files on the local 
system that no longer exist on the remote system. 

For ongoing backups, you can have rsync do seven-day incremental backups. Here's 
an example: 

# mkdir /var/backups 

# rsync --delete --backup \ 

--backup-dir=/var/backups/backup-'date +%A' \ 
-avz chris@serverl: /home/chris/Personal/ \ 
/var/backups /current -backup/ 

When the command just shown runs, all the files from /home/chris/Personal 
on the remote system serverl are copied to the local directory /var/backups/ 
current-backup. All files modified today are copied to a directory named after 
today's day of the week, such as /var/backups/backup-Monday. Over a week, 
seven directories will be created that reflect changes over each of the past seven days. 

Another trick for rotated backups is to use hard links instead of multiple copies of the files. 
This two-step process consists of rotating the files, then running rsync: 

# rm -rf /var/backups/backup-old/ 

# mv /var/backups/backup-current/ /var/backups/backup-old/ 

# rsync --delete --link-dest=/var/backups/backup-old -avz \ 

chris@serverl: /home/chris/Personal/ /var/backups/backup-current/ 

In the previous procedure, the existing backup-current directory replaces the 
backup-old directory, deleting the two-week-old full backup with last-week's full 
backup. When the new full backup is run with rsync using the --link-dest option, 
if any of the files being backed up from the remote Personal directory on serverl 
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existed during the previous backup (now in backup-old), a hard link is created 
between the file in the backup-current directory and backup-old directory. 

You can save a lot of space by having hard links between files in your backup-old 
and backup-current directory. For example, if you had a file named f ilel . txt in 
both directories, you could check that both were the same physical file by listing the 
files' inodes as follows: 

$ Is -i /var /backups/backup* /f ilel. txt 

260761 /var/backups/backup-current/f ilel . txt 
2 60761 / var /backups /backup- old/ f ilel . txt 



Backing Up with unison 



Although the rsync command is good to back up one machine to another, it assumes 
that the machine being backed up is the only one where the data is being modified. 
What if you have two machines that both modify the same file and you want to sync 
those files? Unison is a tool that will let you do that. 

It's common for people to want to work with the same documents on their laptop and 
desktop systems. Those machines might even run different operating systems. Because 
unison is a cross-platform application, it can let you sync files that are on both Linux and 
Windows systems. To use unison in SUSE, you must install the unison package. 

With unison, you can define two roots representing the two paths to synchronize. 
Those roots can be local or remote over ssh. For example: 

$ unison /home/f rancois ssh: //francois@serverl//home/fcaen 
$ unison /home/f rancois /mnt/backups/francois-homedir 

NOTE Users have reported issues attempting to sync using unison versions 
installed by default between SUSE systems and Fedora or Ubuntu systems. Be 
sure to check that the versions of unison you use are at the same version number 
between the platforms. 

Unison contains both graphical and command-line tools for doing unison backups. 
It will try to run the graphical version by default. This may fail if you don't have a 
desktop running or if you're launching unison from within screen. To force unison to 
run in command line mode, add the -ui text option as follows: 

$ unison /home/f rancois ssh: //francois@serverl//home/fcaen -ui text 

Contacting server. . . 
francois@serverl ' s password: 
Looking for changes 

Waiting for changes from server 
Reconciling changes 
local serverl 

newfile > memo. txt [f] y 

Propagating updates 
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The unison utility will then compare the two roots and for each change that occurred 
since last time, ask you what you want to do. In the example above, there's a new file 
called memo . txt on the local system. You are asked if you want to proceed with the 
update (in this case, copy memo . txt from the local machine to serverl). Type y to do 
the updates. 

If you trust unison, add -auto to make it take default actions without prompting you: 

$ unison /home/francois ssh: //f rancois@serverl//home/fcaen -auto 

There is no man page for unison. However, you can view unison options using the 
-help option. You can also display and page through the unison manual using the 
-doc all option as shown here: 

$ unison -help See unison options 

$ unison -doc all | less Display unison manual 

If you find yourself synchronizing two roots frequently, you can create a profile, which 
is a series of presets. In graphical mode, the default screen makes you create profiles. 
Profiles are stored in .prf text files in the -/ . unison/ directory. They can be as sim- 
ple as the following: 

root = /home/francois 

root = ssh: //francois@serverl//home/fcaen 

If this is stored in a profile called f c-home . prf, you can invoke it simply with the 
following command line: 

$ unison fc-home 

Backing Up to Removable Media 

The capacity of CDs and DVDs, and the low costs of those media, has made them 
attractive options as computer backup media. Using tools that commonly come 
with Linux systems, you can gather files to back up into CD or DVD images and 
burn those images to the appropriate media. 

Command line tools such as mkisof s (for creating CD images) and cdrecord (for 
burning images to CD or DVD) once provided the most popular interfaces for mak- 
ing backups to CD or DVD. Now there are many graphical front-ends to those tools 
you could also consider using. For example, GUI tools for mastering and burning 
CDs/DVDs include K3b (the KDE CD and DVD Kreator) and Nautilus (GNOME's 
file manager that offers a CD-burning feature). Other GUI tools for burning CDs 
include gcombust, X-CD-Roast, and graveman. 

The commands for creating file system images to back up to CD or DVD, as well as to 
burn those images, are described in this section. 
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Creating Backup Images with mkisofs 

Most data CDs and DVDs can be accessed on both Windows and Linux systems because 
they are created using the ISO9660 standard for formatting the information on those 
discs. Because most modern operating systems need to save more information about 
files and directories than the basic ISO9660 standard includes, extensions to that 
standard were added to contain that information. 

Using the mkisofs command, you can back up the file and directory structure from 
any point in your Linux file system and produce an ISO9660 image. That image can 
include the following kinds of extensions: 

□ System Use Sharing Protocol (SUSP) are records identified in the Rock Ridge 
Interchange Protocol. SUSP records can include Unix-style attributes, such as 
ownership, long file names, and special files (such as character devices and 
symbolic links). 

□ Joliet directory records store longer file names in a form that makes them usable 
to Windows systems. 

□ Hierarchical File System (HFS) extensions allow the ISO image to appear as an 
HFS file system, which is the native file system for Macintosh computers. Likewise, 
Data and Resource forks can be added in different ways to be read by Macs. 

When you set out to create your ISO image, consider where you will ultimately need 
to access the files you back up using mkisofs (Linux, Windows, or Macs). Once the 
image is created, it can be used in different ways, the most obvious of which is to burn 
the image to a CD or DVD. 

Besides being useful in producing all or portions of a Linux file system to use on a 
portable medium, mkisofs is also useful for creating live CDs/DVDs. It does this by 
adding boot information to the image that can launch a Linux kernel or other operat- 
ing system, bypassing the computer's hard drive. 

NOTE Although you can still use the mkisofs command in SUSE, mkisofs 
is now a pointer to genisoimage. The genisoimage command was derived 
from mkisofs, which was part of the cdrtools package (see http : / /cdrecord 
. berlios . de). Development o/genisoimage is part of the cdrkit project 
(www. cdrkit . org). 

Because most Linux users store their personal files in their home directories, a com- 
mon way to use mkisofs to back up files is to back up everything under the /home 
directory. Here are some examples of using mkisofs to create an ISO image from all files 
and directories under the /home directory: 

# cd /tmp 

# mkisofs -o home.iso /home Create basic ISO9660 image 

# mkisofs -o home2.iso -J -R /home Add Joliet Rock Ridge extensions 

# mkisofs -o home3.iso -J -R -hfs /home Also add HFS extensions 
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In each of the three examples above, all files and directories beneath the /home directory 
are added to the ISO image (home . iso). The first example has no extensions, so all file 
names are converted to DOS-style naming (8.3 characters). The second example uses 
Joliet and Rock Ridge extensions, so file names and permissions should appear as they 
did on the original Linux system when you open the ISO on a Linux or Windows sys- 
tem. The last example also makes the files on the image readable from a Mac file system. 
You will see a warning when running this example. 

You can have multiple sources added to the image. Here are some examples: 

# mkisofs -o home. iso -R -J music/ docs/ \ Multiple directories/ files 

chris.pdf /var/spool/mail 

# mkisofs -o home. iso -J -R \ Graft files on to the image 

-graft-points Pictures/=/var/pics/ \ 
/home/chris 

The first example above shows various files and directories being combined and placed 
on the root of the ISO image. The second example grafts the contents of the /var /pics 
directory into the /home/chris/Pictures directory. As a result, on the CD image the 
/Pictures directory will contain all content from the /var/pics directory. 

Adding information into the header of the ISO image can help you identify the contents of that 
image later. This is especially useful if the image is being saved or distributed online, 
without a physical disc you can write on. Here are some examples: 

# mkisofs -o /tmp/home.iso -R -J \ Add header info to ISO 

-p www.handsonhistory.com \ 

-publisher "Swan Bay Folk Art Center" \ 
-V "WebBackup" \ 

-A "mkisofs" \ 

-volset "1 of 4 backups, July 30, 2007" \ 
/home/chris 

In the example above, -p indicates the preparer ID, which could include a phone num- 
ber, mailing address, or web site for contacting the preparer of the ISO image. With the 
option -publisher, you can indicate a 128-character description of the preparer (pos- 
sibly the company or organization name). The -V indicates the volume ID. Volume ID 
is important because in many Linux systems, this volume ID is used to mount the CD 
when it is inserted. For example, in the command line shown above, the CD would be 
mounted on /media/WebBackup in SUSE and other Linux systems. The -A option 
can be used to indicate the application used to create the ISO image. The -volset 
option can contain a string of information about a set of ISO images. 

When you have created your ISO image, and before you burn it to disc, you can check 
the image and make sure you can access the files it contains. Here are ways to check it out: 

# volname home. iso Display volume name 
WebBackup 

# isoinfo -d -i home. iso Display header information 
CD-ROM is in ISO 9660 format 

System id: LINUX 
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Volume id: WebBackup 

Volume set id: All Website material on November 2, 2007 

Publisher id: Swan Bay Folk Art Center 

Data preparer id: www.handsonhistory.com 

Application id: mkisofs 

Copyright File id: 

Abstract File id: 

Bibliographic File id: 

Volume set size is: 1 

Volume set sequence number is: 1 

Logical block size is: 2048 

Volume size is: 23805 

Joliet with UCS level 3 found 

Rock Ridge signatures version 1 found 

You can see a lot of the information entered on the mkisofs command line when 
the image was created. If this had been an image that was going to be published, we 
might also have indicated the locations on the CD of a copyright file (-copyright), 
abstract file (-abstract), and bibliographic file (-biblio). Provided that the header 
is okay, you can next try accessing files on the ISO image by mounting it: 

# mkdir /mnt/myimage Create a mount point 

# mount -o loop home.iso /mnt/myimage Mount the ISO in loopback 

# Is -1 /mnt/myimage Check the ISO contents 

# umount /mnt/myimage Unmount the image when done 

Besides checking that you can access the files and directories on the ISO, make sure 
that the date/time stamps, ownership, and permissions are set as you would like. That 
information might be useful if you need to restore the information at a later date. 

Burning Backup Images with cdrecord 

The cdrecord command is the most popular Linux command line tool for burning 
CD and DVD images. After you have created an ISO image (as described earlier) or 
obtained one otherwise (such as downloading an install CD or live CD from the 
Internet), cdrecord makes it easy to put that image on a disc. 

NOTE The cdrecord command has been replaced with the wodim command. 
The wodim command was created from the cdrecord code base and still supports 
most of the same options. If you run cdrecord, you will actually be running 
wodim in this SUSE release. If you have problems with that utility, contact 
the CDRkit project (http : / /cdrkit . org). 

There is no difference in making a CD or DVD ISO image, aside from the fact that a 
DVD image can obviously be bigger than a CD image. Check the media you have for 
their capacities. A CD can typically hold 650MB, 700MB, or 800MB, whereas mini 
CDs can hold 50MB, 180MB, 185MB, or 193MB. Single-layer DVDs hold 4.7GB, 
while double-layer DVDs can hold 8.4GB. 
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NOTE Keep in mind, however, that CD/DVD manufacturers list their capacities 
based on 1000KB per 1MB, instead of 1024KB. Type du --si home . iso to list 
the size of your ISO, instead of du -sh as you would normally, to check if your 
ISO will fit on the media you have. 

Before you begin burning your image to CD or DVD, check that your drive supports CD/DVD 
burning and determine the address of the drive. Use the — scanbus option to cdrecord 
to do that: 

# cdrecord --scanbus Shows a drive that cannot do burning 
scsibusO : 

0,0,0 0) 'SAMSUNG ' 'DVD-ROM SD-616E ' 'F503' Removable CD-ROM 
0,0,0 1) * 
0,0,0 2) * 

# cdrecord --scanbus Shows a drive that can burn CDs or DVDs 
scsibusO : 

0,0,0 0) 'LITE-ON ' 'DVDRW SOHW-1633S' 'BS0C Removable CD-ROM 
0,0,0 1) * 
0,0,0 2) * 



In the two examples shown, the first indicates a CD /DVD drive that only supports 
reading and cannot burn CDs (DVD-ROM and CD-ROM). The second example shows a 
drive that can burn CDs or DVDs (DVDRW). Insert the medium you want to record on. 
Assuming your drive can burn the media you have, here are some simple cdrecord 
commands for burning CD or DVD images: 

# cdrecord -dummy home. iso Test burn without actually burning 

# cdrecord -v home. iso Burn CD (default settings) in verbose 

# cdrecord -v speed=24 home. iso Set specific speed 

# cdrecord -pad home. iso Can't read track so add 15 zeroed sectors 

# cdrecord -eject home. iso Eject CD/DVD when burn is done 

# cdrecord /dev/cdrw home. iso Identify drive by device name (may differ) 

# cdrecord dev=0,2,0 home. iso Identify drive by SCSI name 

The cdrecord command can also burn multi-session CDs/DVDs. Here is an example: 

# cdrecord -multi home. iso Start a multi-burn session 

# cdrecord -msinfo Check the session offset for next burn 
Using /dev/cdrom of unknown capabilities 

0,93041 

# mkisofs -J -R -o new. iso \ Create a second ISO to burn 

-C 0,93041 /home/chris/more Indicate start point and new data for ISO 

# cdrecord new. iso Burn new data to existing CD 

You can use multiple -multi burns until the CD is filled up. For the final burn, don't 
use -multi, so that the CD will be closed. 



153 



82928c08.qxd:Toolbox 11/1/07 12:24 PM Pae 



154 



Chapter 8: Backups and Removable Media 



Making and Burning DVDs with growisofs 

Using the growisofs command, you can combine the two steps of gathering files into an ISO 
image (mkisofs) and burning that image to DVD (cdrecord). Besides saving a step, the growisofs 
command also offers the advantage of keeping a session open by default until you close 
it, so you don't need to do anything special for multi-burn sessions. 

Here is an example of some growisofs commands for a multi-burn session: 

# growisofs -Z /dev/dvd -R -J /home/chris Master and burn to DVD 

# growisofs -Z /dev/dvd -R -J /home/francois Add to burn 

# growisofs -M /dev/dvd=/dev/zero Close burn 

If you want to add options when creating the ISO image, you can simply add mkisofs 
options to the command line. (For example, see how the -R and -J options are added 
in the above examples.) 

If you want to burn a DVD image using growisofs, you can use the -dvd-compat option. Here's 
an example: 

# growisofs -dvd-compat -Z /dev/dvd=image.iso Burn an ISO image to DVD 

The -dvd-compat option can improve compatibility with different DVD drives over 
some multi-session DVD burning procedures. 



Summary 



Linux and its predecessor Unix systems handled data backups by combining com- 
mands that each handled a discrete set of features. Backups of your critical data can 
still be done in this way. In fact, many of the tools you can use will perform more 
securely and efficiently than ever before. 

The tape archiver utility (tar command) has expanded well beyond its original job 
of making magnetic tape backups of data files. Because nearly every Linux and UNIX 
system includes tar, it has become a standard utility for packaging software and back- 
ing up data to compressed archives. Those archives can then be transported and stored 
in a variety of ways. 

To move backed up data to other machines over a network, you can use remote exe- 
cution features of OpenSSH tools (such as ssh). You can also use an excellent utility 
called rsync. With rsync, you can save resources by only backing up files (or parts 
of files) that have changed. 

Inexpensive CDs and DVDs have made those media popular for doing personal and 
small-office backups. The mkisofs command can create file systems of backed up 
data in ISO9660 format that can be restored on a variety of systems (Linux, Windows, 
or Mac). Once mkisofs command has created an ISO image, the image can be burned 
to CD or DVD using the cdrecord or growisofs command. 
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Checking and Managing 
Running Processes 



When an executable program starts up, it runs 
as a process that is under the management of 
your Linux system's process table. Linux pro- 
vides all the tools you need to view and change 
the processes running on your system. 

The ps and top commands are great for viewing 
information on your running processes. There are 
literally dozens of options to ps and top to help 
you view process information exactly the way you 
want to. The pgrep command can further help 
find the process you want. 

There are commands such as nice and renice 
for raising and lowering processor priority for a 
process. You can move processes to run in the 
background (bg command) or back to the fore- 
ground (f g command). 

Sending signals to a process is a way of changing 
its behavior or killing it altogether. Using the kill 
and killall commands, you can send signals to 
processes by PID or name, respectively. You can 
also send other signals to processes to do such 
things as reread configuration files or continue 
with a stopped process. 



To run commands at scheduled times or so they are not tied to your shell 
session, you can use the at and batch commands. To run commands 
repetitively at set times, there are the cron and anacron facilities. Or you 
can drop scripts (or symbolic links to scripts) into /etc /cron . hourly 
(or cron. daily, cron. weekly, or cron .monthly). 



IN THIS CHAPTER 

Viewing active 
processes with 
ps and top 

Searching for 
processes with pgrep 

Adjusting CPU priority 
with nice and renice 

Moving processes to 
the background (bg) 
or foreground (fg) 

Killing and signaling 
processes with kill 
and killall 

Using at and batch to 
run commands 

Scheduling commands 
to run repeatedly 
with cron 
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Listing Active Processes 

To see which processes are currently running on a system, most people use the 
ps and top commands. The ps command gives you a snapshot (in a simple list) 
of processes running at the moment. The top command offers a screen-oriented, 
constantly updated listing of running commands, sorted as you choose (by CPU 
use, memory use, UID, and so on). 

Viewing Active Processes with ps 

Every Linux system (as well as every system derived from Unix, such as BSD, Mac OS X, 
and others) includes the ps command. Over the years, however, many slightly different 
versions of ps have appeared, offering slightly different options. Because ps dates back 
to the first Unix systems, it also supports nonstandard ways of entering some options 
(for example, allowing you to drop the dash before an option in some cases). 

The different uses of ps shown in this chapter will work on SUSE, openSUSE, and most 
other Linux systems. Here are some examples you can run to show processes running for 
the current user (Table 9-1 contains column descriptions of ps output): 



$ ps 


List processes of current user at current shell 


PID 


TTY TIME CMD 


2552 


pts/0 00:00:00 bash 


3438 


pts/0 00:00:00 ps 


$ ps 


-u chris Show all chris' running processes (simple output 


PID 


TTY TIME COMMAND 


2678 


ttyl 0:00 startx 


2689 


ttyl 0:00 xinit 


2710 


ttyl 0:06 gnome-session 



$ ps -u chris u 

USER PID %CPU %MEM 
Chris 2678 0.0 0.0 4328 
chris 2689 0.0 0.1 2408 
chris 2710 0.0 1.1 22016 



Show all chris' running processes (with CPU/MEM) 
VSZ RSS TTY STAT START TIME COMMAND 



852 ttyl 

488 ttyl 

5496 ttyl 



Augl4 
Augl4 
Augl4 



00 /bin/sh startx 

00 xinit 

06 gnome-session 



$ ps -fu chris 

UID PID 
chris 2678 
chris 2689 
chris 2710 



PPID 
2645 
2678 
2689 



Show all chris ' 
C STIME TTY 
Augl4 ttyl 
Augl4 ttyl 
Augl4 ttyl 



running processes (wi th PPID) 
TIME CMD 

00 /bin/sh /usr/XHR6/bin/startx 
00 xinit /etc/Xll/xinit/xinitrc 
09 /usr/bin/gnome-session 



00 


00: 


00 


00: 


00 


00: 



$ ps -Fu chris 

UID PID PPID 
Chris 2678 2645 
chris 2689 2678 
chris 2710 2689 



Show all chris' running processes (with SZ and PSR) 
SZ RSS PSR STIME TTY TIME CMD 



1082 
602 

5504 



852 
488 

5440 



Augl4 ttyl 
Augl4 ttyl 
Augl4 ttyl 



00 


00: 


00 


00: 


00 


00: 



00 /bin/sh startx 

00 xinit 

09 gnome-session 



These examples illustrate some of the processes from a user running a GNOME desktop 
session. The first example above shows ps alone being run from a Terminal window, so 
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you only see the processes for the current shell running in that window. Other examples 
let you display different information for each process (see later examples for ways of 
producing custom output). See Table 9-1 for descriptions of columns displayed by ps. 

Here are ps examples showing output for every process currently running on the system: 



$ 


ps 


-e 


Show every running 


process 




PID 


TTY 


TIME CMD 








1 


? 


00:00:01 init 








2 


? 


00:00:00 migration/0 






3 


? 


00:00:00 ksoft 


irqd/0 




$ 


ps 


-el 


Show every running 


process 


F 


S 


UID 


PID PPID C PRI 


NI ADDR SZ 


WCHAN 


4 


S 





1 75 


- 534 




1 


s 





2 1 -40 


- - 




1 


s 





3 1 94 


19 - 





long listing 
TTY TIME CMD 



00 


00: 


00 


00: 


00 


00: 



01 init 

00 migration/0 

00 ksoftirqd/0 



$ ps -ef 

UID 
root 
root 
root 



Show every running process, fuii- format iisting 



PID PPID C STIME TTY 

1 Aug05 ? 00 

2 10 Aug05 ? 00 

3 10 Aug05 ? 00 



TIME CMD 



:01 init [5] 

:00 [migration/0] 

:00 [ksoftirqd/0] 



$ ps -eF 

UID 
root 
root 
root 



Show every running process, extra fuli- format listing 



PID 
1 
2 
3 



PPID 


1 
1 



c 



SZ RSS PSR STIME TTY 

534 556 Aug05 ? 
Aug05 ? 
Aug05 ? 





TIME 


CMD 


00 


00:01 


init [5] 


00 


00:00 


[migration/0 


00 


00:00 


[ksoftirqd/0 



$ ps ax 

PID TTY 

1 ? 

2 ? 

3 ? 



Show every running process, short BSD style 

STAT TIME COMMAND 

Ss 0:01 init [5] 

S 0:00 [migration/0] 

SN 0:00 [ksoftirqd/0] 



$ ps aux 



Show every running process, long BSD style 



USER PID %CPU %MEM 

root 1 0.0 0.0 

root 2 0.0 0.0 

root 3 0.0 0.0 



VSZ RSS TTY 

2136 556 ? 

? 

? 



STAT START 

Ss Aug05 

S Aug05 

SN Aug05 



TIME COMMAND 
:01 init [5] 
:00 [migration/0] 
:00 [ksoftirqd/0] 



$ ps auwx Show every running process, long BSD style, wide format 

$ ps auwwx Show every running process, long BSD style, unlimited width 

Some processes start up other processes. For example, a web server (httpd daemon) 
will spin off multiple httpd daemons to wait for requests to your web server. You can 
view the hierarchy of processes (in a tree view) using various options with ps: 

$ ps -ejH Show process hierarchy with process/session IDs 

PID PGID SID TTY TIME CMD 

1 1 1 ? 00:00:01 init 

1126 1126 1126 ? 00:00:00 udevd 
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2346 


2346 


2346 


? 




00 


00 


00 




resmgrd 


2347 


2347 


2347 


? 




00 


00 


00 




acpid 


2354 


2354 


2354 


? 




00 


00 


00 




klogd 


2362 


2362 


2362 


? 




00 


00 


00 




syslog-ng 


2418 


2418 


2418 


? 




00 


00 


00 




dbus-daemon 


2419 


2419 


2419 


? 




00 


00 


00 




console -kit-dae 


2614 


2614 


2614 


? 




00 


00 


01 




hald 


2615 


2614 


2614 


? 




00 


00 


00 




hald-runner 


2798 


2614 


2614 


? 




00 


00 


00 




hald-addon-inpu 


2812 


2614 


2614 


? 




00 


00 


00 




hald-addon-cpuf 


2813 


2614 


2614 


? 




00 


00 


00 




hald-addon-acpi 


2821 


2614 


2614 


? 




00 


00 


38 




hald-addon-stor 


2829 


2829 


2829 


? 




00 


00 


00 




kdm 


2842 


2842 


2842 


tty7 




00 


11 


00 




Xorg 


2843 


2829 


2829 


? 




00 


00 


00 




kdm 


3805 


3805 


3805 


? 




00 


00 


00 




kde 


3863 


3863 


3863 


? 




00 


00 


00 




ssh-agent 


$ ps axjf 




Show process hi 


ararchy in BSD-style output 


PPID 


PID 


PGID 


SID 


TTY TPGID 


STAT DID TIME COMMAND 





1 


i 


1 


? 


-1 


Ss 


01 init [5] 


1 


2 


1 


1 


? 


-1 


S 





00 [migration/0] 


1 


2043 


2043 


2043 


? 


-1 


Ss 


00 /usr/sbin/sshd 


2043 


2549 


2549 


2549 


? 


-1 


Ss 


00 \_ sshd: chris [priv] 


2549 


2551 


2549 


2549 


? 


-1 


s 


500 


00 \_ sshd: chris@pts 


2551 


2552 


2552 


2552 


pts/0 8398 


Ss 500 


\_ -bash 


1 


7760 


7760 


7760 


? 


-1 


Ss 


00 /usr/sbin/httpd 


7760 


7762 


7760 


7760 


? 


-1 


S 


48 


00 \_ /usr/sbin/httpd 


7760 


7763 


7760 


7760 


? 


-1 


S 


48 


00 \_ /usr/sbin/httpd 


$ ps - 


ef — forest 


Show process hi 


ararchy in forest format 


UID 


PID PPID C 


STIME TTY 




TIME CMD 


root 




1 





Aug05 ? 




00 


00 


01 init [5] 


root 




2 


1 


Aug05 ? 




00 


00 


00 [migration/ 0] 


root 




3 


1 


Aug05 ? 




00 


00 


00 [ksoftirqd/0] 


root 


2043 


1 


Aug05 ? 




00 


00 


00 /usr/sbin/sshd 


root 


2549 2043 


Augl6 ? 




00 


00 


00 \_ sshd: chris [priv] 


chris 


2551 2549 


Augl6 ? 




00 


00 


00 | \_ sshd: chrisapts/0 


chris 


2552 2551 


Augl6 pts/0 




00 


00 


00 | \_ -bash 


root 


7760 


1 


18 


27 ? 




00 


00 


00 /usr/sbin/httpd 


apache 


7762 7760 


18 


27 ? 




00 


00 


00 \_ /usr/sbin/httpd 


apache 


7763 7760 


18 


27 ? 




00 


00 


00 \_ /usr/sbin/httpd 


$ pstree 




Show 


pri 


icesses alphabetically in tree format 


init-+ 


-Xorg 
















-at-sp 


i-registry 












-atd 
















- audi td-+- audi spd 














* - {auditd 












-sshd- 


+-sshd sshd-- 


--bash pstree 






| -sshd sshd-- 


--bash su 


— bash 






N -sshd sshd-- 


--b< 


ish- 


— su 


---be 


ish- 


— su- 


— bash vim 



158 



82928c09.qxd:Toolbox 11/1/07 12:24 PM Pae 



159 



Chapter 9: Checking and Managing Running Processes 

The "tree" examples just shown illustrate different ways of displaying the hierarchy 
of processes. The output was snipped to compare several of the same processes with 
different output. Note that the PPID (Parent Process ID) is the ID of the process that 
started each child process shown. The sshd processes show a running Secure Shell 
Daemon with a user logging in over the network, resulting in a bash shell (and even- 
tually a vim editor) starting. The httpd daemon represents the Apache web server, 
with the parent started by the root user and child processes started as the apache user. 
The last example shows the pstree command, which is specifically used for display- 
ing tree views of processes. 

If you prefer personalized views of ps output, you can select exactly which columns 
of data to display with ps using the -o option. You can then use the --sort option to 
sort the output by any of those data. Table 9-1 shows available column output and the 
options to add to -o to have each column print with ps. 



Table 9-1: Selecting and Viewing ps Column Output 



Option 


Column Head 


Description 


%cpu 


%CPU 


CPU utilization of process's lifetime in 00.0 format 


%mem 


%MEM 


Percentage of process's machine's physical memory 
use (resident set size) 


args 


COMMAND 


Command with all arguments 


bsdstart 


START 


Start time of command started: HH:MM or Mon Day 


bsdtime 


TIME 


Total (user and system) CPU time 


comm 


COMMAND 


Command name only (no arguments shown) 


cp 


CP 


CPU utilization in tenth-of-a-percentage 


cputime 


TIME 


Total CPU time in [DD-]HH:MM:SS format 


egid 


EGID 


Effective group ID of the process (as integer) 


egroup 


EGROUP 


Effective group ID of the process (as name) 


etime 


ELAPSED 


Time since process was started, in 
[[DD-]HH:]MM:SS format 


euid 


EUID 


Effective user ID of the process (as integer) 


euser 


EUSER 


Effective user ID of the process (as name) 



Continued 



159 



82928c09.qxd:Toolbox 11/1/07 12:24 PM Pae 



160 



Chapter 9: Checking and Managing Running Processes 



Table 9-1: Selecting and Viewing ps Column Output {continued) 



Option 


Column Head 


Description 


fgid 


FGID 


File system access group ID (as number) 


f group 


FGROUP 


File system access group ID (as name) 


fname 


COMMAND 


First eight characters of command name 


fuid 


FUID 


File system access user ID (as number) 


fuser 


FUSER 


File system access user ID (as name) 


lstart 


STARTED 


Date and time the command started 


nice 


NI 


Nice value, from 19 (nicest) to -20 (CPU hog) 


pgid 


PGID 


Process group ID of process 


pid 


PID 


Process ID number of process 


ppid 


PPID 


Parent process ID of process 


psr 


PSR 


Processor process is assigned to (first CPU is 0) 


rgid 


RGID 


Real group ID (as number) 


rgroup 


RGROUP 


Real group (as name) 


rss 


RSS 


Non-swapped physical memory (resident set size) 
in KB 


rtprio 


RTPRIO 


Real-time priority 


ruid 


RUID 


Real user ID (as number) 


ruser 


RUSER 


Real user (as name) 


s 


S 


One-character state display (D:sleep, no interrupt; 
R:running; S:sleep, can interrupt; T:stopped; 
W:paging; X:dead; Z:zombie) 


sess 


SESS 


Session ID of session leader 


sgi_p 


P 


Processor that process is currently running on 


size 


SZ 


Rough amount of swap space needed if process were 
to swap out 


start 


STARTED 


Time command started: HH:MM:SS or Month Day 
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Table 9-1: Selecting and Viewing ps Column Output {continued) 



Option 


Column Head 


Description 


start_time 


START 


Time command started: HH:MM or MonthDay 


stat 


STAT 


Multi-character state: One-character "s" state plus 
other state characters (<:High priority; N:Low prior- 
ity; L:Has pages locked in memory; s:Is session leader; 
l:Multi-threaded; +:in foreground process group) 


sz 


SZ 


Size of process's core image (physical pages) 


tname 


TTY 


Controlling tty (terminal) 


user 


USER 


Effective user ID of process (as name) 


vsize 


VSZ 


Process's virtual memory (1024-byte units) 



Note that some values that are meant to print user names may still print numbers (UIDs) 
instead, if the name is too long to fit in the given space. 

Using a comma-separated list of column options, you can produce your custom output. 
Here are some examples of custom views of running processes: 

$ ps -eo ppid, user, %mem, size, vsize, comm --sort=-size Sort by mem use 
PPID USER %MEM SZ VSZ COMMAND 

1 root 27.0 68176 84264 yum-updatesd 
$ ps -eo ppid, user, bsdstart,bsdtime,%cpu, args --sort=-%cpu Sort by CPU use 
PPID USER START TIME %CPU COMMAND 

1 root Jul 30 44:20 27.1 /usr/bin/python /usr/sbin/yum-updatesd 
$ ps -eo ppid, user, nice, cputime,args --sort=-nice Sort by low priority 
PPID USER NI TIME COMMAND 

1 root 19 00:44:26 /usr/bin/python /usr/sbin/yum-updatesd 
$ ps -eo ppid, user, stat, tname, sess, cputime, args --sort=user Sort by user 
PPID USER STAT TTY SESS TIME COMMAND 

1 avahi Ss ? 2221 00:00:07 avahi-daemon: running [example.net] 

Here are a few other extraneous examples of the ps command: 



$ ps -C httpd 

PID TTY TIME CMD 

1493 ? 00:00:00 httpd 

1495 ? 00:00:00 httpd 



Display running httpd processes 



Note that you need to install an HTTP server, such as Apache, to run an httpd process. 

$ ps -p 5413 -o pid, ppid, bsdtime, args Display info for PID 5413 

PID PPID TIME COMMAND 
5413 1 0:08 gpm -m /dev/ input/mice -t exps2 
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$ ps -U chris, francois -o pid,ruser, tty, stat,args See info for 2 users 

PID RUSER TT STAT COMMAND 

1010 chris pts/0 Ss -bash 
5951 francois pts/1 Ss+ /bin/bash 

Watching Active Processes with top 

If you want to see the processes running on your system on an ongoing basis, you can use the top 

command. The top command runs a screen-oriented view of your running processes 
that is updated continuously. If you start the top command with no options, it displays 
your system's uptime, tasks, CPU usage, and memory usage, followed by a list of your 
running processes, sorted by CPU usage. Here's an example: 

$ top 

top - 01:39:43 up 4 days, 1:53, 6 users, load average: 1.25, 1.08, 1.11 
Tasks: 119 total, 1 running, 117 sleeping, stopped, 1 zombie 
Cpu(s): 46.8% us, 3.3% sy, 0.0% ni , 49.5% id, 0.0% wa, 0.3% hi, 0.0% si 

Mem: 482992k total, 472688k used, 10304k free, 24312k buffers 

Swap: 5863716k total, 534512k used, 5329204k free, 68072k cached 

PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND 

2690 root 15 344m 76m 7116 S 32.2 16.2 2349:08 X 

2778 chris 15 16212 7992 4836 S 1.7 1.7 4:30.61 metacity 

22279 chris 15 227m 109m 23m S 1.0 23.3 34:34.00 firefox-bin 

Here are examples of other options you can use to start top to continuously display running 
processes: 

$ top -d 5 Change update delay to 5 seconds (from default 3) 

$ top -u francois Only see processes of effective user name francois 

$ top -p 190,2690 Only display processes 190 and 2690 

$ top -n 10 Refresh the screen 10 times before quitting 

$ top -b Run in non-interative non-screen-oriented mode 

The last example (top -b) formats the output of top in a way that is suitable for out- 
put to a file, as opposed to redrawing the same screen for interactive viewing. This 
can be used to create a log of processes, for example when hunting down that run- 
away processes that eats up all your resources in the middle of the night. Here's how 
to run top and log the output for 10 hours: 

$ top -b -n 12000 > myprocesslog 

When top is running, you can update and sort the process list in different ways. To immediately 
update the process list, press Space or Enter. Press Shift+n to sort by PID. Press Shift+p to 
sort by CPU usage. Press Shift+m to sort by memory usage. Press Shift+t to sort by CPU time 
consumed. You can also change the column to sort by using the Shift+< (sort column to 
left) or Shift+> (sort column to right) characters. Or, press f and select the letter of the column 
you want to sort by when the list of columns appears. 
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There are several ways to change the behavior of top as it's running. Press d and type a number 
representing seconds to change the delay between refreshes. Press u and enter a user name to 
only display processes for the selected user. To view only a select number of processes, type n and type 
the number you want to see. Press = at any point to return to the original top display. 

You can act on any of the running processes in different ways. To signal (kill) a running process, 
type k followed by the PID of the process you want to send the signal to. Then type 9 
to end it or a different signal number to send that signal to the process. To give a process 
higher or lower run priority, type n and then add a negative number (to increase priority) or 
a positive number (to reduce priority). 

If you want to find more information about how to use top, type ? during a top session. The 
man page also has a lot of information about how to use top: 

$ man top View the top man page 

When you are done using top, type q to exit. 



Finding and Controlling Processes 

Changing a running process first means finding the process you want to change, then 
modifying the processing priority or sending the process a signal to change its behav- 
ior. If you are looking for a particular process, you might find it tough to locate it in a 
large list of processes output by ps or top. The pgrep command offers ways of search- 
ing through your active processes for the ones you are looking for. The renice com- 
mand lets you change the processing priority of running processes. The kill, pkill, 
and killall commands let you send signals to running processes (including signals 
to end those processes). 

Using pgrep to Find Processes 

In its most basic form, you can use pgrep to search for a command name (or part of 
one) and produce the process ID of any process that includes that name. For example: 

$ pgrep init Show PID for any process including 'init' string 

1 

3906 

3907 

Because we know there is only one init command running, we next use the -1 option 
to see each process's command name (to learn why two processes showed up): 

$ pgrep -1 init Show PID and name for any process including 'init' string 

1 init 

3906 start_kdeinit 

3907 kdeinit 
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You can also search for processes that are associated with a particular user 

$ pgrep -lu chrls List all processes owned by user chris 

2551 sshd 

2552 bash 
2803 vim 

Probably the most useful way to use pgrep is to have it find the process IDs of the running 
processes and pipe those PIDs to another command to produce the output. Here are some 
examples (look for other commands if metacity or f irefox aren't running): 

$ ps -p 'pgrep metacity' Search for metacity and run ps (short) 

PID TTY TIME CMD 

2778 ? 00:05:00 metacity 
$ ps -fp $ (pgrep xinit) Search for xinit and run ps (full) 
UID PID PPID C STIME TTY TIME CMD 
chris 2689 2678 Augl4 ttyl 00:00:00 xinit /etc/Xll/xinit/xinitrc 

# renice -5 $ (pgrep firefox) Search for firefox, improve its priority 
20522: old priority 0, new priority -5 

20557: old priority 0, new priority -5 

Any command that can take a process ID as input can be combined with pgrep in 
these ways. As the previous example of pgrep illustrates, you can use commands 
such as renice to change how a process behaves while it is running. 

Using fuser to Find Processes 

Another way to locate a particular process is by what the process is accessing. The 
fuser command can be used to find which processes have a file or a socket open at 
the moment. After the processes are found, fuser can be used to send signals to those 
processes. 

The fuser command is most useful for finding out if files are being held open 
by processes on mounted file systems (such as local hard disks or Samba shares). 
Finding those processes allows you to close them properly (or just kill them if you 
must) so the file system can be unmounted cleanly. 

Here are some examples of the fuser command for listing processes that have files open on a 
selected file system: 

# fuser -mauv /boot Verbose output of processes with /boot open 

USER PID ACCESS COMMAND 

(root) bash 



/boot/grub/: root 3853 ..c. 

root 19760 ..c. 

root 28171 F.c. 

root 29252 ..c. 

root 29255 ..c. 

root 29396 F.c. 



(root)bash 
(root) vi 
(root) man 
(root) sh 
(root) vi 



The example just shown displays the process ID for running processes associated with 
/boot. They may have a file open, a shell open, or be a child process of a shell with the 
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current directory in /boot. Specifically in this example, there are two bash shells open 
in the /boot file system, two vi commands with files open in /boot, and a man com- 
mand running in /boot. The -a shows all processes, -u indicates which user owns 
each process, and -v produces verbose output. 

Here are other examples using fuser to show processes with files open: 

# fuser /boot Show parent PIDs for processes opening /boot 
/boot: 19760c 29396c 

# fuser -m /boot Show all PIDs for processes opening- /boot 
/boot: 3853c 19760c 28171c 29396c 29252c 29255c 

# fuser -u /boot Show PIDs/user for this shell open in /boot 
/boot: 19760c(root) 29396c(root) 29252c(root) 29255c(root) 

After you know which processes have files open, you can close those processes manually 
or kill them. Close processes manually if at all possible, because simply killing processes 
can leave files in an unclean state! Here are examples of using f us er to kill or send other 
signals to all processes with files open to a file system: 

# fuser -k /boot Kill all processes with /boot files open (SIGKILL) 

# fuser -1 List supported signals 

HUP INT QUIT ILL TRAP ABRT IOT BUS FPE KILL USR1 SEGV USR2 PIPE ALRM TERM 
STKFLT CHLD CONT STOP TSTP TTIN TTOU URG XCPU XFSZ VTALRM PROF WINCH 10 
PWR SYS UNUSED 

# fuser -k -HUP /boot Send HUP signal to all processes with /boot open 

Changing Running Processes 

Even after a process is running, you can change its behavior in different ways. 
With the renice command, shown earlier, you can adjust a running process's 
priority in your system's scheduler. With the nice command, you can determine 
the default priority and also set a higher or lower priority at the time you launch 
a process. 

Another way you can change how a running process behaves is to send a signal to 
that process. The kill and killall commands can be used to send signals to run- 
ning processes. Likewise, the pkill command can send a signal to a process. 

Adjusting Processor Priority with nice 

Every running process has a nice value that can be used to tell the Linux process sched- 
uler what priority should be given to that process. Positive values of niceness actually 
give your process a lower priority. The concept came about during the days of large, 
multi-user Unix systems where you could be "nice" by running a non-urgent process 
at a lower priority so other users had a shot at the CPU. 

Niceness doesn't enforce scheduling priority, but is merely a suggestion to the sched- 
uler. To see your current nice value, you can type the nice command with no options: 

$ nice Run nice to determine current niceness 
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The default nice value is 0. You can use the nice command to run a process at a higher 
or lower priority than the default. The priority number can range from -20 (most favor- 
able scheduling priority) to 19 (least favorable scheduling priority). Although the root 
user can raise or lower any user's nice value, a regular user can only lower the priorities 
of a process (setting a higher nice value). 

WARNING! Proceed with caution when assigning negative nice values to 
processes. This can possibly crash your machine if critical system processes 
lose their high priority. 

Here are a few examples of starting a command with nice to change a command's nice value: 

$ nice -n 12 nroff -man a.roff | less Format man pages at low priority 

# nice -n -10 gimp Launch gimp at higher priority 

When a process is already running, you can change the process's nice value using the renice 
command. Here are some examples of the renice command: 

$ renice +2 -u f rancois Renice francois ' processes +2 

$ renice +5 4737 Renice FID 4737 by +5 

# renice -3 'pgrep -u chris spamd* Renice chris' spamd processes -3 
9688: old priority -1, new priority -3 

20279: old priority -1, new priority -3 
20282: old priority -1, new priority -3 

The backticks are used in the previous command line to indicate that the output of 
the pgrep command (presumably PIDs of spamd daemons run by chris) is fed to the 
renice command. 

The niceness settings for your processes are displayed by default when you run top. 
You can also see niceness settings using -o nice when you produce custom output 
from the ps command. 

Running Processes in the Background and Foreground 

When you run a process from a shell, it is run in the foreground by default. That means 
that you can't type another command until the first one is done. By adding an amper- 
sand (&) to the end of a command line, you can run that command line in the back- 
ground. Using the f g, bg, and j obs commands, along with various control codes, you 
can move commands between background and foreground. 

In the following sequence of commands, we start the GIMP image program from a 
Terminal window. After that is a series of control keys and commands to stop and start 
the process and move it between foreground and background: 

$ gimp Run gimp in the foreground 

<Ctrl+z> Stop process and place in background 

[1]+ Stopped gimp 

$ bg 1 Start process running again in background 
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$ fg l 

gimp 
<Ctrl+c> 



Continue running process in foreground 
Kill process 



Note that processes placed in the background are given a job ID number (in this case, 1). 
By placing a percentage sign in front of the number (for example, %l) you can identify a 
particular background process to the bg and f g commands or simply type the number 
with the command (as in f g 1). With one or more background jobs running at the cur- 
rent shell, you can use the jobs command to manage your background jobs: 

$ jobs Display background jobs for current shell 

[1] Running gimp & 

[2] Running xmms & 

[3]- Running gedit & 

[4]+ Stopped gtali 

$ jobs -1 Display PID with each job's information 

[1] 31676 Running gimp & 

[2] 31677 Running xmms & 

[3]- 31683 Running gedit & 

[4]+ 31688 Stopped gtali 

$ jobs -1 %2 Display information only for job %2 

[2] 31677 Running xmms & 

The processes running in the j obs examples might have been done while you were 
logged in (using ssh) to a remote system, but want to run remote GUI applications on your 
local desktop. By running those processes in the background, you can have multiple 
applications running at once, while still having those applications associated with 
your current shell. Once a process is running, you can disconnect the process from the cur- 
rent shell using the disown command: 



$ disown %3 
$ disown -a 
$ disown -h 



Disconnect job %3 from current shell 

Disconnect all jobs from current shell 

Protect all jobs from HUP sent to current shell 



After you have disowned a process, you can close the shell without also killing the 
process. 

NOTE With f g, bg, or disown, if you don't indicate which process to act on, the 
current job is used. The current job has a plus sign (+) next to it. 

The f g and bg commands manipulate running processes by moving those processes to 
the foreground or background. Another way to manipulate running commands is to 
send signals directly to those processes. A common way to send signals to running 
processes is with the kill and killall commands. 

Killing and Signaling Processes 

You can stop or change running processes by sending signals to those processes. 
Commands such as kill and killall can send signals you select to running 
processes, which as their names imply, is often a signal to kill the process. 
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Signals are represented by numbers (9, 15, and so on) and strings (SIGKILL, SIGTERM, 
and so on). Table 9-2 shows standard signals you can send to processes in Linux. 

Table 9-2: Standard Signals to Send to Processes 



Signal Number 


Signal Name 


Description 


1 


SIGHUP 


Hang up from terminal or controlling process died 


2 


SIGINT 


Keyboard interrupt 


3 


SIGQUIT 


Keyboard quit 


4 


SIGILL 


Illegal instruction 


6 


SIGABRT 


Abort sent from abort function 


8 


SIGFPE 


Floating point exception 


9 


SIGKILL 


Kill signal 


11 


SIGSEGV 


Invalid memory reference 


13 


SIGPIPE 


Pipe broken (no process reading from pipe) 


14 


SIGALRM 


Timer signal from alarm system call 


15 


SIGTERM 


Termination signal 


30,10,16 


SIGUSR1 


User-defined signal 1 


31,12,17 


SIGUSR2 


User-defined signal 2 


20,17,18 


SIGCHLD 


Child terminated or stopped 


19,18,25 


SIGCONT 


Continue if process is stopped 


17,19,23 


SIGSTOP 


Stop the process 


18,20.24 


SIGTSTP 


Stop typed at terminal 


21,21,26 


SIGTTIN 


Terminal input for background process 


22,22,27 


SIGTTOU 


Terminal output for background process 
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The kill command can send signals to processes by process ID or job number while the 
killall command can signal processes by command name. Here are some examples: 

$ kill 28665 Send SIGTEKM to process with PID 28665 

$ kill -9 4895 Send SIGKILL to process with PID 4895 

$ kill -SIGCONT 5254 Continue a stopped process (pid 5254) 

$ kill %3 Kill the process represented by job %3 

$ killall spamd Kill all spamd daemons currently running 

$ killall -SI6HUP sendmail Have sendmail processes reread config files 

The SIGKILL (9) signal, used generously by trigger-happy novice administrators, 
should be reserved as a last resort. It does not allow the targeted process to exit cleanly 
but forces it to end abruptly. This can potentially result in loss or corruption of data 
handled by that process. The SIGHUP signal was originally used on Unix systems to 
indicate that a terminal was being disconnected from a mainframe (such as from a 
hang-up of a dial-in modem). However, daemon processes, such as sendmail and 
httpd, were implemented to catch SIGHUP signals as an indication that those processes 
should reread configuration files. 

Running Processes Away from the Current Shell 

If you want a process to continue to run, even if you disconnect from the current shell 
session, there are several ways to go about doing that. You can use the nohup command 
to run a process in a way that it is impervious to a hang-up signal: 

$ nohup updatedb & Run updatedb with no ability to interrupt 

# nohup nice -9 gcc hello. c & Run gcc uninterrupted and higher priority 

Using nohup is different than running the command with an ampersand alone because 
with nohup the command will keep running, even if you exit the shell that launched 
the command. 

The nohup command was commonly used in the days of slow processors and dial-up 
connections (so you didn't have to stay logged in to an expensive connection while 
a long compile completed). Also, today using tools such as screen (described in 
Chapter 14) you can keep a shell session active, even after you disconnect your net- 
work connection to that shell. 

Scheduling Processes to Run 

Commands associated with the cron facility can be used to set a command to run at 
a specific time (including now) so that it is not connected to the current shell. The at 
command runs a command at the time you set: 

$ at now +1 min Start command running in one minute 

at> updatedb 

at> <Ctrl+d> <E0T> 

job 5 at Mon Aug 20 20:37:00 2007 

$ at teatime Start command at 4pm today 

$ at now +5 days Start a command in five days 

$ at 06/25/08 Start a command at current time on June 25, 2008 
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Another way to run a command that's not connected with the current shell is with the 
batch command. With batch, you can set a command to start as soon as the processor is ready 
(load average below .8): 

$ batch Start command running immediately 

at> find /mnt/isos | grep jpg$ > /tmp/mypics 
at> <Ctrl+d> <EOT> 

Note that after the at or batch commands you see a secondary at> prompt. Type the 
command you want to run at that prompt and press Enter. After that, you can continue 
to enter commands. When you are done, press Ctrl+d on a line by itself to queue the 
commands you entered to run. 

After the commands are entered, you can check the queue of at jobs that are set to run by 

typing the atq command: 

$ atq 

11 Wed Sep 5 21:10:00 2007 a francois 

10 Fri Aug 24 21:10:00 2007 a francois 

8 Thu Aug 23 20:53:00 2007 a francois 

Regular users can only see their own at jobs that are queued. The root user can see 
everyone's queued at jobs. If you want to delete an at job from the queue, use the atrm 
command: 

$ atrm 11 Delete at job number 11 

The at and batch commands are for queuing up a command to run as a one-shot 
deal. You can use the cron facility to set up commands to run repeatedly. These commands 
are scripted into cron jobs which are scheduled in crontab files. There is one system 
crontab file (/etc/crontab). Also, each user can create a personal crontab file that 
can launch commands at times that the user chooses. To create a personal crontab file, 
type the following. 

$ crontab -e Create a personal crontab file 

The crontab -e command opens your crontab file (or creates a new one) using the 
vi text editor. Here are examples of several entries you could add to a crontab file: 

15 8 * * Mon, Tue, Wed, Thu, Fri mail chris < /var/project/stats . txt 
* * 1 1,4,7,10 * find / | grep .doc$ > /var/sales/documents . txt 

The first crontab example shown sends a mail message to the user named chris by 
directing the contents of /var/proj ect/stats . txt into that message. That mail com- 
mand is run Monday through Friday at 8:15 a.m. In the second example, on the first day 
of January, April, July, and October, the find command runs to look for every . doc file 
on the system and sends the resulting list of files to /var/sales/documents . txt. 
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The last part of each crontab entry is the command that is run. The first five fields rep- 
resent the time and date the command is run. The fields from left to right are: minute 
(0 to 59), hour (0 to 23), day of the month (0 to 31), month (0 to 12 or Jan, Feb, Mar, Apr, 
May, Jun, Jul, Aug, Sep, Oct, Nov, or Dec), and day of the week (0 to 7 or Sun, Mon, Tue, 
Wed, Thu, Fri, or Sat). An asterisk (*) in a field means to match any value for that field. 

Here are some other options with the crontab command: 

# crontab -eu chris Edit another user's crontab (root only) 
$ crontab -1 List contents of your crontab file 

15 8 * * Mon, Tue, Wed, Thu, Fri mail chris < /var/project/stats . txt 

* * 1 1,4,7,10 * find / | grep .doc$ > /var/sales/documents . txt 
$ crontab -r Delete your crontab file 

The traditional way to configure system cron jobs was to add them to the system 
crontab. Although this is still an option, SUSE provides an easier way to create 
hourly, daily, weekly, and monthly cron jobs, by associating the command you want to run 
with a cron directory. Simply create a script that you want to run. Then copy the script 

to the /etc /cron . hourly, /etc /cron. daily, /etc /cron .weekly or /etc /cron 
. monthly directory. The command will then run in the time frame indicated by the 
directory (hourly, daily, weekly, or monthly). 

An alternative to the cron facility is the anacron facility. With anacron, as with cron, 
you can configure commands to run periodically. However, anacron is most appro- 
priate for machines that are not on all the time. If a command is not run because the 
computer was off during the scheduled time, the next time the computer is on, the 
anacron facility makes sure that the commands that were missed during the down- 
time are run after the system resumes. 



Summary 



Watching and working with the processes that run on your Linux system are impor- 
tant activities to make sure that your system is operating efficiently. Using commands 
such as ps and top, you can view the processes running on your system. You can also 
use pgrep to search for and list particular processes. 

With commands such as nice and renice, you can adjust the recommended priorities 
at which selected processes run. When a process is running, you can change how it is 
running or kill the process by sending it a signal from the kill or killall command. 

After launching a command from the current shell, you can set that command's process 
to run in the background (bg) or foreground (f g). You can also stop and restart the 
process using different control codes. 

To schedule a command to run at a later time, you can use the at or batch com- 
mand. To set up a command to run repeatedly at set intervals, you can use the 
cron or anacron facilities. 
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10 

Managing the System 



Without careful management, the demands on 
your Linux system can sometimes exceed the 
resources you have available. Being able to moni- 
tor your system's activities (memory, CPU, and 
device usage) over time can help you make sure 
that your machine has enough resources to do 
what you need it to. Likewise, managing other 
aspects of your system, such as the device drivers 
it uses and how the boot process works, can help 
avoid performance problems and system failures. 

This chapter is divided into several sections that 
relate to ways of managing your SUSE or other 
Linux system. The first section can help you moni- 
tor the resources (processing power, devices, and 
memory) on your Linux system. The next section 
describes how to check and set your system clock. 
Descriptions of the boot process and subsequent 
run levels follow. The last sections describe how 
to work with the kernel and related device driv- 
ers, as well as how to view information about 
your computer's hardware components. 



Monitoring Resources 

SUSE, openSUSE, and other Linux systems do a 
wonderful job of keeping track of what they do. If 
you care to look, you can find lots of information 
about how your CPU, hard disks, virtual memory, 
and other computer resources are being used. 

You can go to where the Linux kernel stores real- 
time information about your system by directly 
viewing the contents of files in the /proc file sys- 
tem (see Appendix C). An alternative, however, is 
to use commands to view information about how 
your computer's virtual memory, processor, stor- 
age devices, and network interfaces are being used 
on your system. 



IN THIS CHAPTER 

Checking memory use 
with free, top, vmstat, 
and slabtop 

Viewing CPU use with 
iostat, dstat, and top 

Monitoring storage 
devices with iostat, 
vmstat, and Isof 

Working with dates/ 
time using date, 
hwclock, cal, and NTP 

Changing GRUB boot 
loader behavior 

Rebuilding the initial 
ramdisk 

Dealing with run levels 
with runlevel and init 

Adding, removing, and 
listing services with 
chkconfig and service 

Shutting down the 
system with reboot, 
halt, and shutdown 

Checking and changing 
kernel driver settings 
with Ismod, modinfo, 
and modprobe 

Watching hardware 
settings with Ispci, 
dmidecode, and 
hdparm 
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There are commands that can monitor several different aspects of your system's 
resources. Because this book is not just a man page, however, we have divided the 
following sections by topic (monitoring memory, CPU, and storage devices) rather 
than by the commands that do them (top, vmstat, and iostat). 

NOTE Many of the applications described in this section are installed by default 
in SUSE, in packages such as the procps package. To use iostat or sar, however, 
you need to install the sysstat package. 



Monitoring Memory Use 



Few things will kill system performance faster than running out of memory. Commands 
such as free and top let you see basic information about how your RAM and swap are 
being used. The vmstat command gives detailed information about memory use and 
can run continuously. The slabtop command can show how much memory the kernel 
(slab cache) is consuming. 

The free command provides the quickest way to see how much memory is being used on 
your system. It shows the total amount of RAM (Mem : ) and swap space (Swap : ), along 
with the amount currently being used. Here are examples of the free command: 



$ free 

Mem: 
-/+ buf 
Swap: 
$ free 

Mem: 
-/+ buf 
Swap: 
$ free 

Mem 
-/+ buf 
Swap : 1 
$ free 

Mem: 
-/+ buf 
Swap: 
Total: 
$ free 
$ free 



List memory usage in kilobytes {-k default) 



total 
742476 
fers/cache: 

1020116 
-m 

total 
725 
fers/cache: 

996 
-b 

total 
760295424 
fers/cache: 
044598784 
-mt 

total 

725 

fers/cache: 

996 

1721 



used 

725108 

229176 

72 



free 

17368 

513300 

1020044 



shared 





buffers 
153388 



cached 
342544 



List memory usage in megabytes 
used free shared 
706 18 
223 501 
996 
List memory usage in blocks 

used free shared 
742510592 17784832 
234631168 525664256 
73728 1044525056 
List memory usage with totals displayed (Swap + Mem) 
used free shared buffers cached 
149 334 



buffers 

148 



buffers 
157114368 



cached 
333 



cached 
350765056 



708 

223 



708 



16 
501 
996 

1013 



List memory usage in gigabytes 

Continuously display memory usage every 5 seconds 



To avoid wasting RAM and speed up applications, Linux uses as much otherwise- 
unused RAM as possible for the disc cache. For that reason, the first line of output 
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from free that often shows little free RAM can be misleading. We recommend you 
pay closer attention to the second line of output, which shows the amount of RAM 
actually available for applications. That amount is 501MB in this example: 

-/+ buffers/cache: 223 501 

One way to guess how much memory you need on a system is to go to another com- 
puter running SUSE, then open every application you think you may be running at 
once. Run free with the total option (free -t) to see how much memory is being 
used. Then make sure that your new system has at least that much total memory 
(with most or all of it preferably being available in RAM). 

The top command provides a means of watching the currently running processes, 
with those processes sorted by CPU usage or memory (see Chapter 9 for a description 
of top for watching running processes). However, you can also use top to watch your 
memory usage in a screen-oriented way. Here is an example: 

$ top 

top - 14:14:59 up 3 days, 18:26, 1 user, load average: 0.11, 0.04, 0.01 
Tasks: 114 total, 3 running, 111 sleeping, stopped, zombie 
Cpu(s): 0.0%us, 0.0%sy, . 0%ni , 100 . 0%id, 0.0%wa, 0.0%hi, 0.0%si, 0.0%st 
Mem: 742476k total, 727232k used, 15244k free, 153708k buffers 
Swap: 1020116k total, 72k used, 1020044k free, 343924k cached 
PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND 

2347 root 34 19 89552 77m 5636 S 0.0 10.7 

2797 Chris 18 80612 27m 18m S 0.0 3.8 

2814 Chris 15 44420 22m 20m S 0.0 3.1 



05.75 yum-updatesd 
01.29 nautilus 
00.17 nm-applet 



To exit top, press q. Like the output for free, top shows total of memory usage for 
RAM (Mem : ) and swap space (Swap : ). However, because top is screen oriented and 
provides ongoing monitoring, you can watch memory usage change every three 
seconds (by default). With top running, press Shift+m, and running processes will 
be displayed in memory-use order (so you can watch which processes are consuming 
the most memory). The most useful column to analyze a process' memory usage is 
RES, which shows the process' actual physical RAM usage, also known as resident 
size. The %MEM column is based on this resident size. 

For a more detailed view of your virtual memory statistics, use the vmstat command. 
With vmstat you can view memory use over a given time period, such as since the previous 
reboot or using a sample period. The following example shows vmstat redisplaying 
statistics every three seconds: 



$ vmstat 3 










io 




--system- 






cpu — 




procs 


















r b 


swpd 


free buff 


cache 


si 


so 


bi 


bo 


in cs 


us 


sy 


id wa 


St 


1 


97740 


32488 3196 


148360 











1 


26 3876 


85 


15 








1 1 


98388 


7428 3204 


151472 





216 





333 


30 3200 


82 


18 
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1 





113316 


8148 


2980 


146968 





4980 


4 


5121 


79 


3846 


77 


23 











2 





132648 


7472 


2904 


148488 





6455 


3 


6455 


90 


3644 


83 


17 











2 





147892 


8088 


2732 


144208 





5085 


9 


5220 


79 


3468 


84 


16 











1 





157948 


7680 


2308 


134812 





3272 


12 


3296 


69 


3174 


77 


23 











3 





158348 


7944 


1100 


123888 


21 


144 


25 


275 


26 


3178 


86 


14 





1 





2 





166116 


7320 


568 


120280 


11 


2401 


20 


2403 


51 


3175 


84 


16 











3 





181048 


7708 


64 8 


119452 


53 


4852 


796 


4984 


123 


1783 


86 


13 





1 






To exit vmstat, press Ctrl+c. The vmstat example shows a 30-second time period 
where more than 100 applications are started. Note that when the free space goes 
from 32488 kilobytes to 7428 kilobytes (RAM is filling up), data begins being moved 
to the swap area (see the 216 under the so column). Because the swap area resides on 
the hard disk, you can see that the block written to the disk device (bo) increases as the 
swap out increases. You can see the amount of swap space being used increasing under 
the swpd column. 

The CPU is also straining in the above example, with no idle time showing (id 0). 
Notice also that when some of the applications need to be swapped back in (see the 
last three lines of output), the processor has to wait on two occasions for input/output 
to complete (wa 1). 

Here are some other options for using vmstat: 



$ vmstat -S m 

$ vmstat -S M 

$ vmstat -S k 

$ vmstat -S K 

$ vmstat -n 2 10 

$ vmstat -s | less 

$ vmstat -S M -s | les 

72 5 M total memory 
717 M used memory 
486 M active memory 
17 5 M inactive memory 
7 M free memory 
1 M buffer memory 
12 M swap cache 
996 M total swap 
802 M used swap 
193 M free swap 



Display output in 1000k megabytes 
Display output in 1024k megabytes 
Display output in 1000-byte kilobytes 
Display output in 1024-byte kilobytes 
Output every two seconds, repeat 10 times 
Display event counters and memory statistics 
Display statistics in megabytes 



The previous example shows various memory statistics (-s) output in megabytes (-S M), 
which we find more convenient to get a general view of memory usage. The other exam- 
ples show how to display vmstat output in megabytes and kilobytes (in both market- 
ing and technical terms). After that, the -n 2 10 option tells vmstat to repeat every 
set number of seconds (2) for a limited number of times (10). 
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With commands such as ps and top, you can see how much memory each application 
is consuming on your system. The kernel itself, however, has its own memory cache to 
keep track of its resources, called the kernel slab. You can use the vmstat command to 
display kernel slab memory cache statistics (from /proc/slabinf o) as follows: 



$ vmstat -m | less 




Page through kernel slab memory cache 


Cache 


Num 


Total 


Size 


Pages 


nf _nat : help 


2 


13 


308 


13 


nf_nat :base 








276 


14 


bridge_fdb_cache 








64 


59 


ext3_inode_cache 


1236 


2928 


488 


8 


ext3 xattr 


29 


156 


48 


78 



The slab memory cache information shows each cache name, the number of objects 
active for that cache type, the total number of objects available for that cache type, the 
size of the cache (in bytes), and the number of pages for each cache. You can display ker- 
nel slab memory cache information in a screen-oriented view (similar to the top command) using 

slabtop: 



$ slabtop 

Active / Total Objects (% used) 
Active / Total Slabs (% used) 
Active / Total Caches (% used) 
Active / Total Size (% used) 
Minimum / Average / Maximum Object 



49127 / 70942 (69.2%) 

3094 / 3094 (100.0%) 

101 / 145 (69.7%) 

8830. 29K / 12013. 73K (73.5% 

0.01K / 0.17K / 128. 00K 



OBJS 


ACTIVE 


USE 


OBJ SIZE 


11600 


4303 


37% 


0.13K 


2928 


1246 


42% 


0.48K 


4355 


2535 


58% 


0.28K 


219 


219 


100% 


4.00K 


4128 


3485 


84 c „ 


0.16K 



SLABS OBJ/SLAB CACHE SIZE NAME 

400 29 160 OK dentry_cache 
366 8 1464K ext3_inode_cache 
335 13 1340K radix_tree_node 
219 1 876K size-4096 
172 24 688K filp 



The slabtop output updates every three seconds. By default, slab caches are sorted 
by the number of objects (first column) in each cache. By pressing c you can sort by 
cache size instead (as shown in the previous example). 



Monitoring CPU Usage 



An overburdened CPU is another obvious place to look for performance problems on 
your system. The vmstat command, shown earlier, can produce basic statistics relating 
to CPU usage (user activity, system activity, idle time, I/O wait time, and time stolen 
from a virtual machine). The iostat command (from the sysstat package), however, 
can generate more detailed reports of CPU utilization. 
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Here are two examples of using iostat to display a CPU utilization report: 

$ iostat -c 3 CPU stats every 3 seconds (starting apps) 

Linux 2. 6. 21-1. 3194. fc7 (davinci) 08/10/2007 

avg-cpu: %user %nice %system %iowait %steal %idle 

0.50 0.00 0.00 0.00 0.00 99.50 

avg-cpu: %user %nice %system %iowait %steal %idle 

28.71 0.00 5.45 18.32 0.00 47.52 

avg-cpu: %user %nice %system %iowait %steal %idle 

98.99 0.00 1.01 0.00 0.00 0.00 

avg-cpu: %user %nice %system %iowait %steal %idle 

99.50 0.00 0.50 0.00 0.00 0.00 

$ iostat -c 3 CPU stats every 3 seconds (copying files) 

Linux 2. 6. 21-1. 3194. fc7 (davinci) 08/10/2007 

avg-cpu: %user %nice %system %iowait %steal %idle 

0.50 0.00 0.00 0.00 0.00 0.00 

avg-cpu: %user %nice %system %iowait %steal %idle 

0.50 0.00 24.88 74.63 0.00 0.00 

avg-cpu: %user %nice %system %iowait %steal %idle 

0.50 0.00 10.00 89.50 0.00 0.00 

avg-cpu: %user %nice %system %iowait %steal %idle 

0.50 0.00 17.41 82.09 0.00 0.00 

avg-cpu: %user %nice %system %iowait %steal %idle 

0.00 0.00 14.65 85.35 0.00 0.00 

The first iostat example above starts with a quiet system, then several applications 
started up. You can see that most of the processing to start the applications is being 
done in user space. The second iostat example shows a case where several large 
files are copied from one hard disk to another. The result is a high percentage of time 
being spent at the system level, also known as kernel space (in this case, reading from 
and writing to disk partitions). Note that the file copies also result in a higher amount 
of time waiting for I/O requests to complete (%iowait). 

Here are examples using iostat to print CPU utilization reports with timestamps: 

$ iostat -c -t Print timestamp with CPU report 

Linux 2. 6. 21-1. 3194. fc7 (davinci) 08/10/2007 

Time: 9:28:03 AM 

avg-cpu: %user %nice %system %iowait %steal %idle 
0.50 0.00 0.00 0.00 0.00 99.50 

$ iostat -c -t 2 10 Repeat every 2 seconds for 10 times 

If you want to find out specifically which processes are consuming the most process- 
ing time, you can use the top command. Type top, then press Shift+p to sort by CPU 
usage (this is the default sorting order): 

$ top Display running processes and sort by CPU usage 

Tasks: 120 total, 3 running, 116 sleeping, stopped, 1 zombie 
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PID USER 


PR 


NI 


9648 chris 


16 





552 root 


15 






Cpu(s): 86.8% us, 6.0% sy, 0.0% ni, 3.3% id, 4.0% wa, 0.0% hi, 0.0% si 
Mem: 482992k total, 476884k used, 6108k free, 1220k buffers 
Swap: 5863716k total, 1166252k used, 4697464k free, 52984k cached 

VIRT RES SHR S %CPU %MEM TIME+ COMMAND 
309m 123m 16m R 72.6 26.1 287:55.22 firefox-bin 
762m 65m 5732 S 15.6 14.0 4388:27 X 

The full output would show many more processes, all sorted by current CPU usage 
(%CPU column). In this example, Firefox Web browser (72.6%) and the X display server 
(15.6%) are consuming most of the CPU. If you decided you wanted to kill the X process, 
you could type the process ID of Firefox (9648) to kill the process (if for some reason you 
couldn't just close the Firefox window normally). 

If you want information about the processor itself, you can view information directly from the 
/proc/cpuinf o file. Here is an example: 



$ cat /proc/cpuinfo View CPU informat 


processor 





vendor_id 


AuthenticAMD 


cpu family 


6 


model 


4 


model name 


AMD Athlon (tm) processor 


stepping 


4 


cpu MHz 


1340.080 


cache size 


256 KB 



flags : fpu vme de pse tsc msr pae mce cx8 apic mtrr pge mca cmov pat 

pse36 mmx fxsr syscall mmxext 3dnowext 3dnow up 
bogomips : 2680.91 

clflush size : 32 

An interesting thing to note about your CPU are the flags that represent features that 
it supports. Some features in Linux require that particular CPU extensions associated 
with those flags be on for the feature to work. For example, to use the Xen virtualiza- 
tion para-virtualized guests, the pae flag must be set. To run fully-virtualized guests, 
the CPU must have either the vmx flag (for Intel processors) or svm flag (for AMD 
processors) extension support. 

Similar information about your processor(s) is collected by the system at the very begin- 
ning of the boot process, and can be obtained by looking at the beginning of the output 
of the dmesg command. 



Monitoring Storage Devices 



Basic information about storage space available to your Linux file systems can be seen 
using commands such as du and df (as described in Chapter 7). If you want details 
about how your storage devices are performing, however, commands such as vmstat 
and iostat can be useful. 
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Some of the same kind of output from the iostat command shown earlier can be used 
to tell if bottlenecks occur while doing disk reads and writes. Here's an example: 

$ iostat 3 Check disk reads and writes per disk 
Linux 2. 6. 21-1. 3194. fc7 (davinci) 08/11/2007 

avg-cpu: %user %nice %system %iowait %steal %idle 

13.15 0.60 0.59 0.16 0.00 85.49 

Device: tps Blk_read/s Blk_wrtn/s Blk_read Blk_wrtn 

sda 1.09 32.08 58.94 16086324 29554312 

sdb 0.29 5.27 11.23 2644482 5631348 

avg-cpu: %user %nice %system %iowait %steal %idle 

1.00 0.00 42.14 45.15 0.00 11.71 

Device: tps Blk_read/s Blk_wrtn/s Blk_read Blk_wrtn 

sda 411.37 66515.05 2.68 198880 8 

sdb 68.23 2.68 14696.99 8 43944 

avg-cpu: %user %nice %system %iowait %steal %idle 

0.67 0.00 41.00 58.33 0.00 0.00 

Device: tps Blk_read/s Blk_wrtn/s Blk_read Blk_wrtn 

sda 239.67 52530.67 106.67 157592 320 

sdb 236.00 0.00 55077.33 165232 

The first part of the output of iostat shows averages of CPU usage since the last 
reboot. The next part reflects processing that occurs when a large amount of data is 
copied from the first disk (sda) to the second disk (sdb). High iowait values indicate 
that disk input/output is the bottleneck on the system. In other words, faster disk 
writing would improve performance more than a faster CPU. 

The vmstat command can also list statistics about your disks. Here's an example of 
using vmstat to list information about disk reads and writes: 

$ vmstat -d Display disk read, write, and input/output statistics 

disk- reads writes 10 

total merged sectors ms total merged sectors ms cur sec 

sda 332773 74844 19022380 2524211 245477 3473801 29758560 37140075 1372 
sdb 79963 253716 2646922 2158000 76044 977122 8428140 12489809 506 

The Linux system in this example has two hard disks (sda and sdb). You can see the 
total number of sectors successfully read and written from those hard disks. You can 
also see how many seconds were spent on input /output (io) for those disks. You 
can also see if there are any I/O operations in progress. You can also list read/write 
information for selected disk partitions. Here is an example: 

$ vmstat -p sdal Display read/write stats for a disk partition 

sdal reads read sectors writes requested writes 

174060 12993689 2778 22224 
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Unfortunately the preceding command does not work with softraid md partitions, lvm 
partitions, and some hardware RAID driver-specific devices. 

If you want to find out what files and directories are currently open on your storage devices, you can 
use the lsof command. This command can be particularly useful if you are trying to 
unmount a file system that keeps telling you it is busy. You can check what open file 
is preventing the unmount and decide if you want to kill the process holding that file 
open and force an unmount of the file system. Here is an example of lsof: 

# lsof I less List processes holding files and directories open 

COMMAND PID USER FD TYPE DEVICE SIZE NODE NAME 

init 1 root cwd DIR 8,5 4096 2 / 

init 1 root rtd DIR 8,5 4096 2 / 

init 1 root txt REG 8,5 38620 2049530 /sbin/init 

bash 23857 chris cwd DIR 8,1 4096 2719746 /mnt/sdal/dx 

The first files shown as being open are those held open by the init process (the first 
running process on the system). Files held open by system processes (such as udevd) 
and daemons (such as sshd and syslogd) follow init. Eventually, you will see files 
held open by individual users (which are probably the ones you are interested in if 
you are unable to unmount a disk partition). 

When you are looking at the lsof output, you want to see the name of the file or direc- 
tory that is open (name), the command that has it open (COMMAND), and the process ID 
of that running command (PID). As is often the case when a file system you want to 
unmount is being held open, the /mnt/sdal file system is being held open by a bash 
shell in the preceding example (/mnt/sdal/dx is the bash shell's current working 
directory). In fact, instead of piping lsof output to less or grep, here are a few other 
ways you can find what you are looking for from lsof output: 

# lsof -c bash List files open by bash shells 

# lsof -d cwd List directories open as current working directory 

# lsof -u chris List files and directories open by user chris 

# lsof /mnt/sdal List anything open on /mnt/sdal file system 

# lsof +d /mnt/sdal/dx List anything open under /mnt/sdal/dx directory 



Mastering Time 



Keeping correct time on your Linux system is critical to the system's proper function- 
ing. Your computer running Linux keeps time in two different ways: a system clock 
(which Linux uses to keep track of time) and a hardware clock (that sets the system 
time when Linux boots up). 

The system time is what is used to set timestamps for file creation, process run times, 
and anything else where date and time are used. System time can be viewed and set 
manually (with the date command) or automatically (with the ntpd service, from the 
xntp package). 
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The hardware clock is part of the motherboard's CMOS and runs on a battery attached 
to the motherboard when the system is powered off. You set the hardware clock with 
the hwclock command. 

There are many other tools that can be used to work with time in Linux systems. For 
example, there are tools for checking time in different ways, such as using clockdif f 
(to measure clock difference between computers) and uptime (to see how long your 
system has been up). 

Changing Time/Date with Graphical Tools 

Graphical tools in SUSE, openSUSE, and other Linux systems for changing the date, 
time, and time zone used on your system include the Date & Time Properties pane from 
the Configure Desktop choice in the SUSE menu. From the Administrator mode in this 
pane, you can enable the Network Time Protocol (NTP), to automatically synchronize 
your Linux system's date and time with a selected time server over the network. 

The Date/Time Properties pane modifies the /etc/sysconf ig/clock file. During 
SUSE startup, the /etc/sysconf ig/clock file is read to set your time zone and 
whether your system is using UTC time. 

Your Linux system's time zone is set based on the contents of the /etc /local time 
file. You can set a new time zone immediately by copying the file representing your 
time zone from a subdirectory of /usr/share/zoneinf o. For example, to change 
the current time zone to that of America /Chicago, you could do the following: 

# cp /usr/ share/ zoneinfo/America/Chicago /etc/localtime 
This can also be accomplished by creating a symlink: 

# In -s /usr/share/zoneinfo/America/Chicago /etc/localtime 

To change time zone permanently, set the TIMEZONE value in /etc/sysconf ig/clock 
to the time zone you want. For example, TIMEZONE= "US/Central " . 

Displaying and Setting Your System Clock 

The date command is the primary command-based interface for viewing and changing 
date and time settings, if you are not having that done automatically with NTP. Here are 
examples of date commands for displaying dates and times in different ways: 

$ date Display current date, time and time zone 

Sun Aug 12 01:26:50 CDT 2007 

$ date ' +%& %B %d %G' Display day, month, day of month, year 

Sunday August 12 2 07 

$ date ' +The date today is %F . ' Add words to the date output 

The date today is 2007-08-12 
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$ date --date='4 weeks' 

Sun Sep 9 10:51:18 CDT 2007 
$ date --date='8 months 3 days' 

Tue Apr 15 10:59:44 CDT 2008 
$ date --date='4 Jul' +%A 

Wednesday 



Display date four weeks from today 
Display date 8 months 3 days from today 
Display day on which July 4 falls 



Although our primary interest in this section is time, since we are on the subject of dates 
as well, the cal command is a quick way to display dates by month. Here are examples: 



$ cal 








Show 


current month 


calendar 


(today is highlig 


August 2 07 




















Su Mo 


Tu We Th 
1 2 


Fr 
3 


Sa 
4 


















5 6 


7 8 9 


10 


11 


















12 13 


14 15 16 


17 


18 


















19 20 


21 22 23 


24 


25 


















26 27 


28 29 30 


31 




















$ cal 


2007 






Show 


whole year's calendar 




















2007 














January 










February 








March 




Su Mo 
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Sa 


Su 
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Tu We Th Fr 
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Su 
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Tu We Th 


Fr Sa 
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11 
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11 
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18 


19 


20 21 22 
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25 


26 
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25 


26 


27 28 29 


30 31 



$ cal -j 

August 2007 

Sun Mon Tue Wed Thu Fri Sat 

213 214 215 216 

217 218 219 220 221 222 223 

224 225 226 227 228 229 230 

231 232 233 234 235 236 237 

238 239 240 241 242 243 



Show Julian calendar (numbered from January 1) 



The date command can also be used to change the system date and time. For example: 

# date 081215212008 Set date/time to Aug. 12, 2:21PM, 2008 
Tue Aug 12 11:42:00 CDT 2008 

# date --set='+7 minutes 1 Set time to 7 minutes later 
Sun Aug 12 11:49:33 CDT 2008 

# date --set='-l month' Set date/time to one month earlier 
Sun Jul 12 11:50:20 CDT 2008 

The next time you boot Linux, the system time will be reset based on the value of your 
hardware clock (or your NTP server, if NTP service is enabled). And the next time you 
shut down, the hardware clock will be reset to the system time, in order to preserve 
that time while the machine is powered off. To change the hardware clock, you can use 
the hwclock command. 
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Displaying and Setting Your Hardware Clock 

Anyone can use the hwclock command to view hardware clock settings. However, 
you must have root privileges to change those settings. To use hwclock to view the 
current time from your computer's hardware clock, type the following: 

# hwclock -r Display current hardware clock settings 
Sun 12 Aug 2007 03:45:40 PM CDT -0.447403 seconds 

Even if your hardware clock is set to UTC time, hwclock displays local time by default. 
If your system time strays from your hardware clock (for example, if you tried some of 
the date commands shown previously), you can reset your system clock from your hardware 
clock as follows: 

# hwclock --hctosys Reset system clock from hardware clock 

Likewise if your hardware clock is set incorrectly (for example, if you replaced the 
CMOS battery on your motherboard), you can set the hardware clock from your system clock 
as follows: 

# hwclock --systohc Reset system clock from hardware clock 

Over time your hardware clock can drift. Because the clock tends to drift the same 
amount each day, hwclock can keep track of this drift time (which it does in the /etc/ 
adj time file). You can adjust the hardware clock time based on the adj time file as follows: 

# hwclock --adjust Adjust hardware clock time for drift 

To set the hardware clock to a specific time, you can use the --set option. Here is an example: 

# hwclock --set --date="3/18/08 18:22:00" Set clock to new date/time 

In this example, the hardware clock is set to March 18, 2008 at 6:22 p.m. This update 
does not immediately affect the system clock. 

Using Network Time Protocol 
to Set Date/Time 

When you install SUSE or openSUSE, you are given the opportunity to set your system 
date and time. An option at that time is to use preconfigured Network Time Protocol 
(NTP) servers to automatically get the current date and time when your system reboots. 
If you choose that option, the installer will set up the ntpd daemon (part of the xntp 
package) and use it to keep your time synchronized. 
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If you didn't configure NTP to set time for your system when you first installed your 
Linux system, you can do so later by turning on the ntpd service. Here is how: 

# service ntp start Start NTP service immediately 

# chkconfig ntp on Set NTP service to start at each reboot 

The ntp service uses information in the /etc/sysconf ig/ntp file. For example, 
by default the date /time from the NTP server is not used to reset the hardware clock. 
To have the hardware clock updated, set ntpd_adjust_cmos_CLOCK to yes (ntpd_ 
ADJUST_CMOS_CLOCK="yes")inthe /etc/sysconf ig/ntp file. 

Whether you install ntpd manually or let the installer do it automagically, the result- 
ing setup turns your machine into a time server, listening on UDP port 123. Unless you 
have very specific needs (and your own GPS or atomic clock), running ntpd on your 
machine can be both a waste of resources and a security risk. For that reason, some sys- 
tem administrators prefer using ntpdate (often in a daily cronjob) to set their system 
time via NTP: 

# ntpdate pool.ntp.org 

15 Aug 00:37:12 ntpdate [ 9706] : 

adjust time server 66.92.68.11 offset 0.009204 sec 

If you try running ntpdate while ntpd is running, you will get the following error: 

# ntpdate pool.ntp.org 

1 Oct 19:30:59 ntpdate [ 14179 ] : the NTP socket is in use, exiting 

NOTE The ntpdate command has been marked as deprecated and will disappear 
in the future. It has been replaced by the following options of ntpd: 

# ntpd -qg 

The -q option tells ntpd to exit after setting the clock (as opposed to keep running 
as a daemon). The -g option prevents ntpd from panicking if the system clock is 
off by more than 1000 seconds. 

Trying Other Date/Time Commands 

There are a few extraneous commands you can use to work with time settings on 
your system. The clockdif f command can be used to check the difference between the 
date/time set on your system and that on another system. For example: 

# clockdiff pool.ntp.org Compare clocks on local/remote host 



host=pool .ntp. org rtt=63 ( } ms / 6 Oms delta=4ms/5ms 
Sun Aug 12 16:35:25 2007 
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A matter of pride among Linux enthusiasts is how long they can keep their Linux sys- 
tems running without having to reboot. Linux systems have been known to run for 
years without having to reboot. The time that a Linux system has been running since 
the previous reboot is referred to as uptime. You can check your system's uptime as follows: 

$ uptime Check how long your system has been running 

6:53pm up 196 days, 14:25, 3 users, load average: 1.66, 0.88, 0.35 

The output of uptime shows the current time, how many days and hours the system 
has been up, and how many users are currently logged in. After that, uptime shows 
the system load over the past 1-, 5-, and 15-minute time periods. 



Managing the Boot Process 



When a computer first starts up, the basic input/output system (BIOS) looks to its boot 
order settings to determine where to find the operating system to boot. Typically, if a 
bootable medium has not been inserted into a removable drive (CD, DVD, floppy disk, 
and so on), the BIOS looks to the master boot record (MBR) on the first bootable hard 
disk. At this point, for most Linux systems, control of the boot process is handed to the 
boot loader. 

For SUSE, and, in fact, most Linux systems these days, the Grand Unified Boot Loader 
(GRUB) is the boot loader that is used by default. GRUB is a replacement for LILO, 
which was the most popular Linux boot loader during the 1990s. GRUB can be set up 
to boot not only your Linux system, but also to boot any other operating systems 
installed on your hard disks (Windows, BSD, or others). GRUB can also include boot 
options with each bootable operating system to refine the boot process, such as to turn 
on or off support for a particular type of hardware. 

Once a Linux system is selected to boot from the boot loader, the boot loader loads the 
kernel. The following dilemma then occurs: the kernel needs to mount the root file sys- 
tem on the hard drive. This requires the appropriate storage drivers (block device kernel 
modules). And those drivers are located on the hard drive itself! To break that vicious 
cycle, a small initial ramdisk (initrd) containing the block device modules is mounted 
by the boot loader. This allows the Linux kernel to read the root file system. After that, 
the init process takes over and begins starting the system services, based on the run 
level that is set for the system. 

The following sections describe commands for modifying the boot loader, startup 
scripts, and run levels associated with your Linux system. 

Using the GRUB Boot Loader 

Assuming GRUB was set up when you first installed SUSE, the settings for your boot 
loader are stored in the / etc /grub . conf file. Any changes you make to that file are 
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picked up automatically when you reboot SUSE. In addition, major settings reside in 
the file /boot/grub/menu . 1st. Here's an example of the contents of the /boot/grub/ 
menu .1st file: 

default=0 
timeout=8 
gf xmenu (hdO , ) /message 

title openSUSE 10.3 

root (hdO.O) 

kernel /vmlinuz-2 . 6 . 22 . 5-29-default root=/dev/disk/by-id/scsi- 
SATA_ST3320620AS_9QF4AKJA-part2 vga=0x31a resume=/dev/sda3 splash=silent 
showopts 

initrd /initrd-2 .6.22 .5-29-default 

This example shows only one bootable operating system (openSUSE 10.3). The 
def ault = line says that the first title entry is booted by default. The timeout = 8 
line says that GRUB pauses eight seconds at the splash screen before booting. 

The actual boot entry (title openSUSE 10.3) points to the first partition on the 
first hard disk (hdO , 0), which contains the kernel and initial RAM disk (initrd) 
to be booted. To change how that kernel boots, you can add options to the end of the 
kernel line. Or you can add entirely new title entries to boot different kernels or oper- 
ating systems. 

Some available boot options are described in Table 2-1 in Chapter 2. Options you might 
want to add to the end of the kernel line include 3 (to boot into runlevel 3, text mode) 
or ide=nodma (to turn off DMA if your system is having hard disk errors). 

In normal circumstances, you don't need to run any commands to have changes to 
menu .1st picked up by your boot loader. When you reboot, the menu .1st file is read 
directly from the hard disk. However, if your MBR becomes corrupted for some rea- 
son and your system won't boot, you may need to reload the GRUB boot loader. 

To reinstall GRUB on your hard disk's MBR, boot a SUSE live CD or install CD in res- 
cue mode and follow the instructions to change root (chroot) to the hard disk parti- 
tion containing your SUSE system. Then, assuming that you're booting from your 
computer 's first SATA hard disk, type the following to reload the boot loader to the MBR: 

# grub-install /dev/sda 

The boot loader should now be installed on your hard disk's MBR. If your grub . conf 
and menu .1st files are correct, your system should be able to reboot from hard disk now. 

Repairing the initial ramdisk (initrd) 

The initrd is a file located in /boot with a name like initrd-2 .6.22. 5-29-default. 
If your initrd becomes corrupted, or if you need to add new block device drivers to it, 
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run the mkinitrd command. First, make sure you make a copy of your existing 
initrd file. Then run the following command: 

# mkinitrd / -f 2. 6.22.5-29-default 

Replace the kernel version in the example above (2.6.22. 5-29-def ault) with your 
own kernel version. Alternatively, to use the currently running kernel version, you 
can use: 

# mkinitrd / ' uname -r' 

Unfortunately, you will often realize that you need to rebuild your initrd file after 
it is too late, as you witness a kernel panic during the root file system mount stage of 
boot. When that occurs, boot into rescue mode as described in the previous section 
and run mkinitrd after enrooting to the proper hard disk partition. 



Controlling Startup and Run Levels 

After the kernel has started up, it hands control of the system to the init process. The 
init process becomes the first running process on the system (PID 1), directing the 
startup of other processes based on the contents of the /etc/inittab file, the default 
run level, and the init scripts set to run at that run level. 

The default run level is typically set to 5 for desktop systems and 3 for server systems 
(based on the value of initdefault in the /etc/inittab file). As noted earlier, that 
value can be overridden by adding a different run level number (s, 1, 2, 3, 4, or 5) to 
the end of the kernel boot line from the boot screen. 

Most Linux administrators leave the basic startup features alone and focus on which 
services are turned on or off at the selected run level. The mechanism for starting run 
level scripts in SUSE, and similar systems is based on the System V Init facility (sysvinit 
package), used originally in AT&T Unix System V systems. 

This section contains commands for working with init scripts and changing run 
levels. As root, you can use the runlevel command to see the current run level: 

# runlevel Display current and previous run levels 
N 3 

Because the system in this example booted directly to run level 3, there is no previous 
run level (n). To change the current run level, you can use the init command: 

# init 5 Change the current run level to 5 (X Desktop) 

In this example, the current run level changes from the previous level (in this case, 3) 
to run level 5 (which starts the X Window graphical user interface). You can also use 
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the q option to the ini t command to reexamine the /etc/inittab file and start or stop processes 
based on changes made to that file: 

# init q Start or stop changed processes in inittab file 

Note that running init q does not start or stop System V services. It is used mostly 
when tinkering with the gettys defined in inittab. 

To manage services, you can use the chkconf ig and service commands. (You need to 
install the samba package first.) For example, to start the Samba service immediately, you 
could type this: 

# service smb start Start Samba service immediately 
Starting SMB services: [ OK ] 

The service command starts the init script named (smb in this example) from the 
/etc /init . d directory. Most of those scripts support start and stop options, while 
some support other features as well. Here's how to use service to start and stop services: 

# service smb Show usage statement (with no options) 
Usage: /etc/ init . d/smb {start | stop | status | try-restart | restart | force - 
reload| reload | probe} 

# service smb restart Restart Samba service (first off, then on) 
Shutting down Samba SMB daemon done 
Starting Samba SMB daemon done 

# service smb try-restart Restart Samba service (if already running) 
Checking for Samba SMB daemon running 
Shutting down Samba SMB daemon done 
Starting Samba SMB daemon done 

# service smb reload Reload settings in smb.conf file 
Reloading Samba SMB daemon done 

# service smb status Check if the Samba service is running (smbd) 
Checking for Samba SMB daemon running 

# service smb stop Stop Samba service 
Shutting down Samba SMB daemon done 

Any of the init scripts contained in /etc/ init .dean be started in this way, but not 
all scripts support all the features just shown. Most init scripts, however, will show 
their usage statement with no option (as shown in the first example above). 

While the service command starts the run level script service immediately, to have a 
service start automatically at boot time or during a run level change, you can use the 
chkconf ig command. With chkconf ig, you can list services, turn them on, or turn them off 
on a per-run level basis. Here are examples: 

# chkeonfig smb on Turn on the Samba service 

# chkeonfig --list smb List runlevels service is on or off 
smb 0:off l:off 2:off 3 ; on 4:off 5 : on 6:off 

# chkeonfig --list List all services, indicating on or off 

# chkeonfig --level 2 smb off Turn off Samba service for run level 2 
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When an init script is added to /etc/init . d, chkconf ig needs to be made aware 
of its existence. This is done automatically when the new init script is part of an 
rpm, and needs to be done manually if you add your own init scripts. To do so, 
run the following: 

# chkconf ig --add mydaemon Add /etc/init .d/mydaemon to chkconf ig 

Although you can use the init command to change to any run level, including 
init (shut down) and init 6 (reboot), there are also specific commands for 
stopping Linux. The advantages of commands such as halt, reboot, powerof f , 
and shutdown are that they include options to let you stop some features before shutdown 
occurs. For example: 

WARNING! Don't try the following commands if you don't intend to actually 
turn off your system, especially on a remote system. 

# reboot Reboot the computer 

# halt -n Don't run sync to sync hard drives before shutdown 

# halt -h Put hard drives in standby mode before halting 

# shutdown 10 Shutdown in ten minutes after warning the users 

# shutdown -r 10 Reboot in ten minutes after warning the users 

# shutdown 10 'Bye!' Send custom message to users before shutdown 

Besides the reboot and init 6 commands, you can also use the old PC keystrokes 
Ctrl+Alt+Del to reboot your computer. If you'd like to disable that feature, for 
example on a public-access PC, simply comment out the following line from 

/etc/inittab: 

ca: : ctrlaltdel : /sbin/shutdown -r -t 4 now 



Straight to the Kernel 



In general, once the kernel starts up on your Linux system, you shouldn't have to do 
too much with it. However, there are tools for checking the kernel that is in use and for 
seeing information about how the kernel started up. Also, if something goes wrong or 
if there is some extra support you need to add to the kernel, there are tools to do those 
things. 

To find out what kernel is currently running on your system, type the following: 

$ uname -r Display name of kernel release 

2.6.22.5-29-default 

$ uname -a Display all available kernel info 

Linux server.domain.com 2.6.22.5-29-default #1 SMP 2007/09/20 15:19:04 UTC i686 

i686 i386 GNU/Linux 
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When the kernel starts, messages about what occurs are placed in the kernel ring 
buffer. You can display the contents of the kernel ring buffer using the dmesg command: 



$ dmesg | less 

Linux version 2 . 6 . 22 . 5-29-default (geeko@buildhost) 
Linux)) #1 SMP 2007/09/20 15:19:04 DTC 
BIOS-provided physical RAM map: 



(gcc version 4.2.1 (SUSE 



BIOS-e820 
BIOS-e820 
BIOS-e820 
BIOS-e820 
BIOS-e820 
BIOS-e820 
BIOS-e820 
BIOS-e820 



0000000000000000 
000000000008f000 
OOOOOOOOOOOeOOOO 
0000000000100000 
000000007ee4e000 
000000007ef05000 
000000007fd77000 
000000007fd7f000 



000000000008f000 
0000000000030000 
0000000000100000 
000000007ee4e000 
000000007ef05000 
000000007fd77000 
000000007fd7f000 
000000007fe2d000 



(usable) 

(reserved) 

(reserved) 

(usable) 

(ACPI NVS) 

(usable) 

(reserved) 

(usable) 



If that buffer fills up, it may no longer contain the beginning of the recorded informa- 
tion. In that case, you can use less /var/ log/boot .msg. 

Other information of interest about kernel processing can be found in the /var/log 
files — in particular, the messages file. You can page through those files as follows: 



# cat /var/log/messages* | less 



Aug 5 21:55 
Aug 6 22 : 12 
Aug 6 22:13 
Aug 6 22:13 

Aug 10 10:53 



46 davinci syslogd 1.4.2 



03 davinci kernel: ethO 

06 davinci kernel: ethO 

07 davinci kernel: ethO 
46 davinci init: Switching to runlevel: 3 



through /var/log/messages 
restart. 
link up, 100Mbps, lpa 0x45El 
link down 
link up, 100Mbps, lpa 0x45El 



In the best circumstances, all the hardware connected to your computer should be 
detected and configured with the proper Linux drivers. In some cases, however, 
either the wrong driver is detected or the necessary driver may not be available on 
your system. For those cases, Linux offers ways of listing loadable kernel modules 
and adding new ones to your system. 

The lsmod command lets you view the names of the loaded modules, their size and what 
other modules are using them. Here is an example: 



# lsmod 

Module 



Size Used by 



parport_pc 

parport 

snd_ensl371 

gameport 

snd_rawmidi 

snd_ac97_codec 

ac97_bus 



29797 


1 




38025 


2 


lp,parport_pc 


28769 


1 




19017 


1 


snd_ensl371 


26561 


1 


snd_ensl371 


96357 


1 


snd_ensl371 


6465 


1 


snd ac97 codec 
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snd_ timer 
soundcore 
elOO 



24773 2 snd_seq, snd_pcm 
11553 2 snd 
37193 



If you want to find out more information about a particular module, you can use the modinf o 
command. Here's an example: 



# modinf o snd_ens!371 



filename: 

description: 
license: 
author : 



/lib/modules/2 . 6 . 21-1 . 3194 . fc7/kernel/sound/pci/ 
snd-ensl371 .ko 

Ensoniq/Creative AudioPCI ES1371+ 

GPL 

Jaroslav Kysela <perex@suse . cz>, Thomas Sailer 

<sailer@ife .ee. ethz . ch> 
srcversion: 411FDA312BD30C6B2A8F6E7 
alias: pci : v000 01102d0 00 0893 8sv*sd*bc*sc*i* 

alias: pci : v000 01274d00005880sv*sd*bc*sc*i* 

alias: pci : v000 01274d0 00 01371sv*sd*bc*sc*i* 

depends : snd-pcm, snd, snd-rawmidi , gameport, snd-ac97-codec 
vermagic: 2 . 6 . 21-1 . 3194 . f c7 SMP mod_unload 686 4KSTACKS 
parm: index:Index value for Ensoniq AudioPCI soundcard. (array of int) 
parm: id: ID string for Ensoniq AudioPCI soundcard. (array of charp) 
parm: enable: Enable Ensoniq AudioPCI soundcard. (array of bool) 
parm: joystick_j?ort : Joystick port address, (array of int) 

If you decide you need to add or remove a loadable module to get some hardware item on 
your system working properly you can use the modprobe command. You can also 
use modprobe to list all available modules and remove modules. Here are examples: 

# modprobe -1 | grep c-qcam List all modules, then look for c-qcam 
/lib/modules/2 .6.21-1.3228. f c7/ kernel /drivers /media/ video /c-qcam.ko 

# modprobe c-qcam Load module for Color QuickCam 

# modprobe -r c-qcam Remove module for Color QuickCam 

NOTE You may hear about the command insmod. insmod is to modprobe 
what rpm is to yum: modprobe can intelligently load module dependencies. For 
that reason, we recommend you use only modprobe. 

You can control kernel parameters with the system running using the sysctl command. You can 
also add parameters permanently to the /etc/sysctl . conf file, so they can load as 
a group or at each reboot. Here are some examples: 



# sysctl -a | less 

kernel. panic = 
kernel .exec-shield = 1 



List all kernel parameters 



# sysctl kernel. hostname 

# sysctl -p 

# sysctl -w kernel. hostname= joe 



List value of particular parameter 
Load parms from /etc/sysctl . conf 
Set value of kernel .hostname 
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As noted earlier, if you want to change any of your kernel parameters permanently 
you should add them to the /etc/sysctl . conf file. Parameter settings in that file 
are in the form parameter = value. 



Poking at the Hardware 



00 


00. 


00 


01. 


00 


10. 


00 


11. 


00 


12. 


01 


00. 



If you just generally want to find out more about your computer's hardware, there 
are a few commands you can try The lspci command lists information about PCI devices 
on your computer: 

# lspci List PCI hardware items 
Host bridge: VIA Technologies, Inc. VT8375 [KM266/KL266] Host Bridge 
PCI bridge: VIA Technologies, Inc. VT8633 [Apollo Pro266 AGP] 
USB Controller: VIA Technologies, Inc. VT82xxxxx UHCI USB 1.1 
ISA bridge: VIA Technologies, Inc. VT8235 ISA Bridge 
Ethernet controller: VIA Technologies, Inc. VT6102 [Rhine-Il] 
VGA compatible controller: S3 Inc. VT8375 [ProSavage8 KM266/KL266] 

# lspci -v List PCI hardware items with more details 

# lspci -w List PCI hardware items with even more details 

Using the dmidecode command, you can display information about your computer's hardware 
components, including information about what features are supported in the BIOS. 
Here is an example: 

# dmidecode | less List hardware components 

# dmidecode 2 . 7 

SMBIOS 2.3 present. 

32 structures occupying 919 bytes. 

Table at OxOOOFOlOO. 

Handle 0x0000, DMI type 0, 20 bytes. 
BIOS Information 

Vendor: Award Software International, Inc. 

Version: F2 

Release Date: 10/06/2003 

Processor Information 
Socket Designation: Socket A 
Type: Central Processor 
Family: Athlon 
Manufacturer: AMD 
ID: 44 06 00 00 FF FB 83 01 
Signature: Family 6, Model 4, Stepping 4 
Flags : 

FPU (Floating-point unit on-chip) 

VME (Virtual mode extension) 

DE (Debugging extension) 
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You can use the hdparm command to view and change information relating to your hard disk. 

WARNING! Although it's safe to view information about features of your hard 
disks, it can potentially damage your hard disk to change some of those settings. 

Here are some examples of printing information about your hard disks: 

# hdparm /dev/sda Display hard disk settings (SATA or SCSI drive) 
/dev/sda: 

I0_support = (default 16-bit) 

readonly = (off) 

readahead = 2 56 (on) 

geometry = 30401/255/63, sectors = 488395055, start = 

# hdparm /dev/hda Display hard disk settings (IDE drive) 

# hdparm -I /dev/sda Display detailed drive information 
/dev/sda: 

ATA device, with non-removable media 

Model Number: FUJITSU MPG3409AT E 
Serial Number: VH06T190RV9W 
Firmware Revision: 82C5 



Summary 



SUSE and other Linux systems make it easy for you to watch and modify many aspects 
of your running system to make sure it is operating at peak performance. Commands 
such as free, top, vmstat, slabtop, iostat, and dstat let you see how your system is 
using its memory, CPU, and storage devices. Using commands such as date, hwclock, 
and cal, as well as services such as NTP, you can watch and manage your system's 
date and time settings. 

To manage the features that are set and services that come up when you boot your 
system, you can modify features associated with your GRUB boot loader and system 
run levels. You can start, stop, list, add, and remove individual system services using 
commands such as service and chkconf ig. Commands such as reboot, halt, and 
shutdown let you safely stop or reboot your computer. 

When it comes to managing your computer's hardware, commands such as lsmod, 
modinf o, and modprobe let you work with loadable modules. You can view informa- 
tion about your hardware with such commands as lspci, dmidecode, and hdparm. 
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11 

Managing Network 
Connections 



Connecting to a network from Linux is often as 
easy as attaching your computer's network inter- 
face card to your ISP's hardware (such as a DSL 
or cable modem) and rebooting. However, if your 
network interface doesn't come up or requires 
some manual intervention, there are many com- 
mands available for configuring network inter- 
faces, checking network connections, and setting 
up special routing. 

This chapter covers many useful commands for 
configuring and working with your network 
interface cards (NICs), such as ethtool and 
if conf ig. In particular, ways of configuring 
wired Ethernet, wireless Ethernet, and modem 
network hardware are covered. With your hard- 
ware connected and network interfaces in place, 
the chapter describes commands such as netstat, 
dig, ip, and ping for getting information about 
your network. 



Configuring Networks 
from the GUI 

When you first install SUSE, the installer lets you 
configure any wired Ethernet cards attached to 
your computer, with the use of a DHCP server 
detected on your network. Alternatively, you can 
set a static IP address, along with your hostname 
and IP addresses for your gateway machine and 
name servers. After installation, there are also 
graphical tools for configuring your network 
interfaces. 



IN THIS CHAPTER 

Using ethtool to work 
with network interface 
cards 

Getting network 
statistics with netstat 

Starting network 
devices with service, 
chkconfig, ifup, and 
ifdown 

Viewing Ethernet 
information with 
ifconfig and ip 

Managing wireless 
cards with iwconfig 

Configuring modems 
with wvdialconf, stty, 
and minicom 

Checking DNS name 
resolution with dig, 
host, and hostname 

Checking connectivity 
with ping and arp 

Tracing connections 
with traceroute, route, 
and ip 

Watching the network 
with netstat, tcpdump, 
and nmap 
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The Network Card window (select Network Devices from the YaST Control Center) 
offers a GUI for configuring your network interface, network hardware, DNS servers, 
host list, and even IPsec virtual private networks. You can configure both dynamic 
(DHCP, bootp) and static IP addresses. You can even set up static network routes. 

In some cases, however, your network interfaces may not be working. Likewise, there 
may be ways you want to work with your network interfaces that are not supported 
from the GUI. For those cases, the following sections describe how to work with your 
network interfaces from the command line. 



Managing Network Interface Cards 

If the network hardware on your computer didn't immediately come up and let you 
connect to the Internet, there are some steps you should go through to troubleshoot 
the problem: 

□ Check that your network interface card (NIC) is properly installed and that the 
cable is connected to your network (ISP's CPE, switch, and so on). 

□ After the cable is connected, make sure you have a link with no speed or duplex 
mismatches. 

□ If all else fails, consider replacing your NIC with known-good spare to isolate a 
hardware failure. 

To check your link from Linux, and to set speed and duplex, use ethtool (ethtool 
package). Use ethtool unless you have a very old NIC and NIC driver that are not 
compatible with the ethtool command. 

NOTE Older versions of Linux provided a tool call mii-tool, which is not 
supported on SUSE. 

To view the syntax of the ethtool command, type the following: 

# ethtool 2>&1 | less View options to the ethtool command 

The ethtool command outputs its built-in help to stderr. To be able to page through 
that help with less, redirect stderr to stdout. 

To display settings for a specific Ethernet card, add the interface name to the command. For 
example, to view card information for ethO, type: 

# ethtool ethO See settings for NIC at ethO 
Settings for ethO : 

Supported ports: [ TP Mil ] 

Supported link modes: lObaseT/Half lObaseT/Full 

lOObaseT/Half lOObaseT/Full 
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Supports auto-negotiation: Yes 

Advertised link modes: lObaseT/Half lObaseT/Full 

lOObaseT/Half lOObaseT/Full 
Advertised auto-negotiation: Yes 
Speed: lOOMb/s 
Duplex: Full 
Port: Mil 
PHYAD : 1 

Transceiver: internal 
Auto-negotiation: on 
Supports Wake-on: g 
Wake-on: g 

Current message level: 0x00000007 (7) 
Link detected: yes 

To find out about the driver being used for a particular network card, use the - i option: 

# ethtool -i ethO Display driver information for NIC 
driver: elOOO 

version: 7 . 3 . 15-k2-NAPI 
firmware-version: 0.5-7 
bus-info: 0000:04:00.0 

Use the -S option to display detailed statistics for a NIC: 

# ethtool -S ethO Show statistics for NIC at ethO 
NIC statistics: 

rx_packets: 1326384 
tx_packets: 773046 
rx_bytes: 1109944723 
tx_bytes: 432773480 
rx_errors : 5 
tx_errors : 2 
rx_dropped : 
tx_dropped : 
multicast: 
collisions: 
rx_length_errors : 
rx_over_errors : 
rx_crc_errors : 5 
rx_f rame_errors : 
rx_f if o_errors : 
rx_missed_errors : 
tx_aborted_errors : 
tx carrier errors : 2 



The ethtool command can be used to change NIC settings as well as display them. To 
turn off auto-negotiation and hard-set the NIC to 100 Mpbs, full duplex, type this: 

# ethtool -s ethO speed 100 duplex full autoneg off Change NIC settings 
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To turn off auto-negotiation and hard-set the speed to 10 Mpbs, half-duplex, type this: 

# ethtool -s ethO speed 10 duplex half autoneg off Change NIC settings 

The changes just made to your NIC settings are good for the current session. When 
you reboot, however, those setting will be lost. To make these settings stick at the next reboot 
or network restart, add the options you want to the ethtool_opts line in the /etc/ 

sysconf ig/network/if cf g-ethO file. For example: 

ETHTOOL_OPTS=" speed 10 duplex half autoneg off" 

The netstat command provides another way to get network interface statistics: 

$ netstat -i Get network interface statistics for ethO 

Kernel Interface table 

Iface MTU Met RX-OK RX-ERR RX-DRP RX-OVR TX-OK TX-ERR TX-DRP TX-OVR Fig 
ethO 1500 1757208 6 996834 4 BMRU 

Use the -c option to get netstat to refresh network interface statistics every second: 

$ netstat -ic Refresh network statistics every second 

You can get cleaner (screen-oriented) refreshed output from netstat by combining it with the 
watch command as follows: 

$ watch netstat -i Refresh network statistics (screen oriented) 
Every 2.0s: netstat -i Wed Aug 22 01:55:48 2007 

Kernel Interface table 

Iface MTU Met RX-OK RX-ERR RX-DRP RX-OVR TX-OK TX-ERR TX-DRP TX-OVR Fig 

ethO 1500 1757208 6 996834 4 BMRU 

As the output indicates, the netstat statistics are updated every 2.0 seconds. 



Managing Network Connections 



Starting and stopping the network interfaces for your wired Ethernet connections to 
your LAN or the Internet is usually handled automatically at the time you boot and 
shut down your SUSE system. However, you can use the service command to start 
and stop your network interfaces any time you want or chkconf ig to change whether 
or not your network starts automatically. 

The if conf ig and ip commands can also be used to configure, activate, and deactivate 
interfaces. However, on SUSE, service and chkconf ig commands provide simpler 
tools to start and stop network interfaces. Therefore, in most cases, you should only use 
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if conf ig and ip commands to gather information about your Ethernet interfaces and 
NICs (as shown later in this section). 

Starting and Stopping Ethernet Connections 

The reason that your wired Ethernet interfaces just come up in many cases when you 
boot SUSE is that the network service is set to be on when the system enters the com- 
mon boot run levels (run levels 3 and 5). There is a set of underlying configuration files 
and scripts that make that happen and a few simple commands that let you control it. 

For SUSE, control scripts and configuration files are located in the /etc/sysconf ig/ 
network/ directory. NICs are configured by editing /etc/sysconf ig/network/ 
if cfg-interface, where interface is your NICs network interface. For example, 
for the first Ethernet interface, the configuration file is named if cfg-ethO. 

The script that starts the configured network files is /etc/init . d/network. As with 
other Linux services, you can start and stop the network service using the service 
command and set it to start automatically with the chkconf ig command. 

To take all NICs offline then bring them back online, allowing any change to the network scripts 
to take effect, type the following: 

# service network restart Shutdown and bring up network interfaces 

Shutting down network interfaces: 

ethO device: Intel Corporation PRO/100 VE Network Connection done 
lo IP address: 127.0.0.1/8 done 

Setting up service network done. 



SuSEfirewall2 
SuSEfirewall2 
SuSEfirewall2 



Setting up rules from /etc/sysconf ig/SuSEf irewall2 

batch committing. . . 

Firewall rules successfully s 



Use the start and stop options to start and stop your network interfaces, respectively: 

# service network stop Shutdown network interfaces 

# service network start Bring up network interfaces 

To check the status of your network interfaces, type the following: 

# service network status Check network interface status 
Checking optional network interfaces: 

ethO device: Intel Corporation PRO/ 10 VE Network Connection (rev 01) 

ethO DHCP client NOT running, because it got an infinite lease 

ethO IP address: 192.168.1.106/24 (DHCP) 

ethO IP address: 192.168.1.106/24 running 

Checking mandatory network interfaces: 

lo 

IP address: 127.0.0.1/8 running 

Checking service network running 
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The service command starts your network interfaces for the current session, but 
doesn't configure them to start the next time your system boots. To configure your network 
connections to start when Linux boots, use the chkconf ig command as follows: 

# chkconfig network on Turn on network service to start at boot 

# chkconfig --list network View runlevels where network is off or on 
network 0:off l:off 2 : on 3 : on 4: off 5 : on 6: off 

If you have multiple network interfaces, you may want to just bring one interface up or 
down. To do that, use the if up and if down commands: 

# ifdown ethO Take the ethO network interface offline 

# ifup ethO Bring the ethO network interface online 

Once your network interfaces are up, there are tools you can use to view information 
about those interfaces and associated NICs. 

Viewing Ethernet Connection Information 

To view the media access control (MAC) address for your NIC and IP address for your 
TCP/IP connections, you can use the if conf ig command. The following command 
line shows the address information and status of yourethO Ethernet interface: 

# ifconfig ethO 

ethO Link encap : Ethernet HWaddr 00 :D0 :B7 : 79 : A5 : 35 

inet addr:10.0.0.155 Beast : 10 . . . 255 Mask: 255 . 255 . 255 . 

inet6 addr : fe80 : : 2d0 :b7f f : f e79 :a535/64 Scope:Link 

UP BROADCAST RUNNING MULTICAST MTU: 1500 Metric :1 

RX packets : 1413382 errors : 6 dropped: overruns : f rame : 6 

TX packets : 834839 errors : 4 dropped:0 overruns : carrier:4 

collisions :0 txqueuelen: 1000 

RX bytes:1141608691 (1.0 GiB) TX bytes : 470961026 (449.1 MiB) 

In this example, the ethO interface is the first Ethernet interface on the computer. 
The MAC address (HWaddr) of the NIC is 00:D0:B7:79:A5:35. You can see the IP 
address (10.0.0.155), broadcast address (10.0.0.255), and subnet mask (255.255.255.0) 
of ethO. Other information includes the number of packets received and transmitted, 
as well as problems (errors, dropped packets, and overruns) that occurred on the 
interface. 

To get information on both active and inactive NICs, use the -a option: 

# ifconfig -a 

Instead of using ifconfig (and several other commands described in this chapter), 
you can use the newer ip command. The ip command was made to show informa- 
tion about your network interfaces, as well as changing settings for network devices, 
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routing, and IP tunnels. Here the ip command is used to show information about the ethO 
interface: 

# ip addr show ethO 

1: ethO: <BROADCAST, MULTICAST, UP, LOWER_UP> mtU 1500 qdisc pfifo_fast qlen 1000 
link/ether 00 :d0 :b7 : 79 :a5 : 35 brd f f : f f : f f : f f : f f : f f 
inet 10.0.0.155/24 brd 10.0.0.255 scope global ethO 
inet6 f e80 : : 2d0 :b7f f : fe79 :a535/64 scope link 
valid_lft forever preferred_lft forever 

The ip command allows for shorthand syntax. If you're familiar with the Cisco IOS 
command line interface, the ip command works the same way. For example, instead 
of typing ip addr show, you could type the following to see information on all interfaces: 



The ip command can operate on multiple network components, known as objects. One 
of these objects is addr, which allows ip to configure network addresses. We will cover 
other objects of the ip command below. 

To see how the ip command is used, use the help option. Along with the help option, you 
can identify an ip object to get information on using that object: 

$ ip help View ip usage statement 

Usage: ip [ OPTIONS ] OBJECT { COMMAND | help } 

ip [ -force ] [-batch filename 
where OBJECT := { link | addr | route | rule | neigh | ntable | tunnel | 
maddr | mroute | monitor | xfrm } 
OPTIONS := { -V[ersion] | -s [tatistics] | -r[esolve] 

-f[amily] { inet | inet6 | ipx | dnet | link } 
-o[neline] | -t[imestamp] } 
$ ip addr help View help for the addr object 
$ ip route help View help for the route object 
$ ip tunnel help View help for the tunnel object 



Using Wireless Connections 



Setting up wireless connections in Linux has been tricky in the past, primarily due to 
the fact that open source drivers have not been available for the vast majority of wireless 
LAN cards on the market. More recent releases of SUSE have shown a marked improve- 
ment. Many wireless cards can now be detected and configured automatically in SUSE. 

Wireless configuration is an area where we would suggest you use the GUI tools (in 
particular, the Network Card panel described earlier in this chapter) to do basic con- 
figuration. You may need to add wireless tools packages to get this to work, such as 
wireless-tools and bcm43xx-fwcutter packages, which are available for SUSE. 
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If you are not able to configure your wireless LAN card using the Network Card 
panel, you might be able to get your wireless card working using drivers and tools 
available from Atheros (www.atheros .com), the MadWifi (www.madwif i .org) proj- 
ect, or the Ndiswrapper project (ndiswrapper . sourcef orge . net). 

If you need help determining exactly what wireless card you have, type the following: 

# lspci | grep -i wireless Search for wireless PCI cards 
01:09.0 Network controller: Broadcom Corporation BCM4306 802.11b/g 

Wireless LAN Controller (rev 03) 

Assuming that your wireless card is up and running, there are some useful commands 
in the wireless-tools package you can use to view and change settings for your wireless 
cards. In particular, the iwconf ig command can help you work a with your wireless 
LAN interfaces. The following scans your network interfaces for supported wireless cards and lists 
their current settings: 

# iwconfig 

ethO no wireless extensions. 

ethl IEEE 802.11-DS ESSID:" " Nickname : "HERMES I" 

Mode:Managed Frequency : 2 . 457 GHz Access Point: Not-Associated 

Bit Rate: 11 Mb/s Tx-Power=15 dBm Sensitivity : 1/3 

Retry limit: 4 RTS thr:off Fragment thr:off 

Encryption key: off 

Power Management : of f 

Wireless interfaces may be named wlanX or ethX, depending on the hardware and 
driver used. You may be able to obtain more information after setting the link up on 
the wireless interface: 

# ip link set ethl up 

# iwconfig ethl 

ethl IEEE 802.11-DS ESSID:"" Nickname : "HERMES I" 

Mode:Managed Frequency : 2 . 457 GHz Access Point: None 

Bit Rate: 11 Mb/s Tx-Power=15 dBm Sensitivity : 1/3 

Retry limit: 4 RTS thr:off Fragment thr:off 

Encryption key: off 

Power Management : of f 

Link Quality=0/92 Signal level=134/153 Noise level=134/153 

Rx invalid nwid:0 Rx invalid crypt:0 Rx invalid frag:0 

Tx excessive retries :0 Invalid misc:0 Missed beacon :0 

The settings just shown can be modified in a lot of ways. Here are some ways to 
use iwconfig to modify your wireless interface settings. In the following examples, we operate 
on a wireless interface named wlanO. These operations may or may not be supported, 
depending on which wireless card and driver you are using. 

# iwconfig wlanO essid "MyWireless" Set essid to MyWireless 

# iwconfig wlanO channel 3 Set the channel to 3 

# iwconfig wlanO mode Ad-Hoc Change from Managed to Ad-Hoc mode 
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# iwconfig wlanO ap any Use any access point available 

# iwconfig wlanO sens -50 Set sensitivity to -50 

# iwconfig wlanO retry 20 Set MAC retransmissions to 20 

# iwconfig wlanO key 1234-5555-66 Set encryption key to 1234-5555-66 

The essid is sometimes called the Network Name or Domain ID. Use it as the com- 
mon name to identify your wireless network. Setting the channel lets your wireless 
LAN operate on that specific channel. 

With Ad-Hoc mode, the network is composed of only interconnected clients with no 
central access point. In Managed/ Infrastructure mode, by setting ap to a specific 
MAC address, you can force the card to connect to the access point at that address, or 
you can set ap to any and allow connections to any access point. 

If you have performance problems, try adjusting the sensitivity (sens) to either a neg- 
ative value (which represents dBm) or positive value (which is either a percentage or a 
sensitivity value set by the vendor). If you get retransmission failures, you can increase 
the retry value so your card can send more packets before failing. 

Use the key option to set an encryption key. You can enter hexadecimal digits (XXXX- 
XXXX-XXXX-XXXX or XXXXXXXX). By adding an s : in front of the key, you can enter 
an ASCII string as the key (as in s :My927pwd). 



Using Dial-up Modems 



Although high-speed DSL, cable modem, and wireless LAN hardware have become 
widely available, there may still be times when a phone line and a modem are your 
only way to get on the Internet. Linux offers both graphical and command line tools 
for configuring and communicating with modems. 

As with other network connections in SUSE, dial-up modem connections can be con- 
figured using the Network Devices panel. Most external serial modems will work with 
Linux without any special configuration. Most hardware PCI modems will also work. 
However, many software modems (also sometimes called Winmodems) often will not 
work in Linux (although some can be configured with special drivers, and are there- 
fore referred to as Linmodems). 

Instead of describing the contortions you must go through to get some Winmodems 
working in Linux, we recommend that you purchase either a modem that connects 
to an external serial port or a hardware modem. If you want to try configuring your 
Winmodem yourself, refer to the Linmodems site (www. linmodems . org). 

If you are not able to get your modem working from the Network Devices modem 
panel , there are some commands you can try. First try the wvdialconf command 
to try to scan any modems connected to your serial ports and create a configuration file: 

# wvdialconf /etc/wvdial.conf Scan serial ports, create config file 
Scanning your serial ports for a modem. 
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ttySO: ATQO VI El -- OK 
ttySO: ATQO VI El Z -- OK 



In this example, a modem was found on the COM1 port (serial port /dev/ttySO). 
Further output should show which speeds are available and various features 
that are supported. The configuration information that results is, in this case, 
written to the file /etc/wvdial . conf . Here's an example of what that file 
might look like: 

[Dialer Defaults] 
Modem = /dev/modem 
Baud = 115200 
Initl = ATZ 

Init2 = ATQO VI El S0=0 &C1 &D2 Sll=55 +FCLASS=0 
; Phone = 
;Username = 
; Password = 

NOTE Typically, SUSE systems will link /dev/modem to the proper serial port 
device, such as /dev/ttySO in this example. 

Open wvdial . conf in a text editor and remove the comment characters (;) from in 
front of the Phone, Username, and Password entries. Then add the phone number 
you need to dial to reach your ISP's bank of dial-in modems. Next add the user 
name and password you need to log in to that modem connection. 

To use the dial-up entry you just configured, you can use the wvdial command: 

# wvdial Dial out and connect to your ISP 

--> WvDial : Internet dialer version 1.54.0 

--> Initializing modem. 

--> Sending: ATZ 

ATZ 

OK 

--> Modem initialized. 



After the connection is established between the two modems, a Point-to-Point Protocol 
(ppp) connection is created between the two points. After that, you should be able to 
start communicating over the Internet. 

If you find that you are not able to communicate with your modem, there are some 
ways of querying your computer's serial ports to find out what is going wrong. The 
first thing to check at the low level is that your /dev/ ttyS? device talks to the hard- 
ware serial port. 
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By default, the Linux system knows of four serial ports: COM1 (/dev/ttySO), COM2 
(/dev/ttySl), COM3 (/dev/ttyS2), and COM4 (/dev/ttyS3). To see a listing of those 
serial ports, use the setserial command (part of the setserial package) with the -g 
option, as follows: 

# setserial -g /dev/ttySO /dev/ttySl /dev/ttyS2 /dev/ttyS3 See port info 



/dev/ttySO, 


UART 


16550A, 


Port: 


0x03f8, 


IRQ: 


4 


/dev/ttySl, 


UART 


unknown , 


Port 


0x02f8 


IRQ 


3 


/dev/ttyS2, 


UART 


unknown , 


Port 


0x03e8 


IRQ 


4 


/dev/ttyS3, 


UART 


unknown , 


Port 


0x02e8 


IRQ 


3 



To see more detailed information on your serial ports, use the -a option: 

# setserial -a /dev/ttySO View serial port details 
/dev/ttySO, Line 0, UART: 16550A, Port: 0x03f8, IRQ: 4 

Baucl_base: 115200, close_delay: 50, divisor: 

closing_wait : 3000 

Flags: spd_normal skip_test 

# setserial -ga /dev/ttySO /dev/ttySl Check multiple port details 

The setserial command can also be used to re-map physical serial ports to logical 
/dev/ttyS? devices. Unless you're running kernel 2.2 with a jumper-configured ISA 
serial card, you won't need this. Modern Linux systems running on modern hardware 
make COM1 and COM2 serial ports work right out of the box, so we won't cover these 
options. 

The stty command is another command you can use to work with serial ports. To view 
the current settings for the C0M1 port (ttySO), type the following: 

# stty -F /dev/ttySO -a View tty settings for serial port 
speed 9600 baud; rows 0; columns 0; line = 0; 

intr = A C; quit = A \; erase = A ?; kill = A U; eof = A D; eol = <undef>; eol2 = 

<undef>; swtch = <undef>; start = A Q; stop = A S; 

susp = A Z; rprnt = A R; werase = A W; lnext = A V; flush = A 0; min = 1; time = 0; 

-parenb -parodd cs8 hupcl -cstopb cread clocal -crtscts 

-ignbrk -brkint -ignpar -parmrk -inpck -istrip -inlcr -igncr icrnl ixon -ixoff - 

iuclc -ixany -imaxbel -iutf8 

opost -olcuc -ocrnl onlcr -onocr -onlret -ofill -ofdel nlO crO tabO bsO vtO ffO 

isig icanon iexten echo echoe echok -echonl -noflsh -xcase -tostop -echoprt 

echoctl echoke 

The dialer will typically change these settings as needed, although you can use the 
stty command to change these settings as well. Refer to the stty man page (man 
stty) for descriptions of any of the tty settings. 

You can talk directly to the modem or other serial devices using the minicom command. In fact, 
it can be useful to troubleshoot dialing by issuing AT commands to the modem using 
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minicom. (You need to install the minicom package.) The first time you run minicom, 
use -s to enter setup mode: 



# minicom -s 

+ [configuration] -- 

Filenames and paths 
File transfer protocols 
Serial port setup 
Modem and dialing 
Screen and keyboard 
Save setup as dfl 
Save setup as . . 
Exit 
Exit from Minicom 



Create your modem settings 



Let's forget about modems for a moment and assume you want to use COM1 to con- 
nect to a Cisco device at 9600 baud. Use the arrow keys to navigate to Serial port setup 
and press Enter to select it. Press a to edit the serial device and change that device 
to /dev/ttySO. Next, press e for port settings and when the Comm Parameters 
screen appears, press e for 9600 baud. To toggle off hardware flow control, press f . 
Press Enter to return to the configuration screen. 

To change modem parameters, select modem and dialing. Then clear the init, reset, 
connect and hangup strings (which are not appropriate for the Cisco device we're con- 
figuring). When that's done, select save setup as dfl (default) from the configura- 
tion screen and choose Exit (not Exit from Minicom). 

You're now in the minicom terminal. To learn more about how to use minicom, press 
Ctrl+a, then z for help. When you are done, press Ctrl+a, then x to exit from minicom. 

WARNING! Do not run minicom inside screen with the default key bindings! 
Otherwise, Ctrl+a gets intercepted by screen/ If you do so by mistake, go to 
another screen window and type: killall minicom. 



Checking Name Resolution 



Because IP addresses are numbers, and people prefer to address things by name, 
TCP/IP networks (such as the Internet) rely on DNS to resolve hostnames into IP 
addresses. SUSE provides several tools for looking up information related to DNS 
name resolution. 

When you first installed SUSE, you either identified Domain Name System (DNS) 
servers to do name resolution or had them assigned automatically from a DHCP 
server. That information is then stored in the /etc/resolv . conf file, looking some- 
thing like the following: 

nameserver 11.22.33.44 
nameserver 22.33.44.55 
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The numbers shown above are replaced by real IP addresses of computers that serve 
as DNS name servers. Once you can connect to working DNS servers, there are com- 
mands you can use to query those servers and look up host computers. 

The dig command (which should be used instead of the deprecated nslookup com- 
mand) can be used to look up information from a DNS server. The host command can 
be used to look up address information for a hostname or domain name. 

To search your DNS servers for a particular host name (www . turbosphere . com in the following 
examples), use the dig command as follows: 

$ dig www.turbosphere.com Search DNS servers set in /etc/resolv. conf 

Instead of using your assigned name server, you can query a specific name server. The fol- 
lowing example queries the DNS server at 4 . 2 . 2 . 1: 

$ dig www.turbosphere.com 04.2.2.1 

Using dig, you can also query for a specific record type: 

$ dig turbosphere.com mx Queries for the mail exchanger 

$ dig turbosphere.com ns Queries for the authoritative name servers 

Use the +trace option to trace a recursive query from the top-level DNS servers down to 
the authoritative servers: 

$ dig +trace www.turbosphere.com Recursively trace DNS servers 

If you just want to see the IP address of a host computer, use the +short option: 

$ dig +short www.turbosphere.com Display only name/IP address pair 

turbosphere . com . 

66.113.99.70 

You can use dig to do a reverse lookup to find DNS information based on an IP address: 

$ dig -x 66.113.99.70 Get DNS information based on IP address 

You can use host to do a reverse DNS lookup as well: 

$ host 66.113.99.70 

70 . 99 . 133 . 66 . in-addr .arpa domain name pointer boost.turbosphere.com. 

To get hostname information for the local machine, use the hostname and dnsdomainname 
commands: 

$ hostname View the local computer's full DNS host name 

boost . turbosphere . com 

$ hostname -s View the local computer's short host name 

boost 
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$ hostname -d View the local computer's domain name 

turbosphere . com 

$ dnsdomainname Another way to view the local domain name 
turbosphere . com 

You can also use hostname to set the local host name temporarily (until the next reboot). 
Here's an example: 

# hostname serverl.example.com Set local hostname 

Changing the hostname of a running machine may adversely affect some running 
daemons. Instead, we recommend you set the local host name so it is set each time the system 
starts up. Edit the setting in the /etc/ HOSTNAME file. Here is an example: 

serverl . example . com 



Troubleshooting Network Problems 

Troubleshooting networks is generally done from the bottom layer up. As discussed 
at beginning of the chapter the first step is to make sure that the physical network 
layer components (cables, NICs, and so on) are connected and working. Next, check 
that the links between physical nodes are working. After that, there are lots of tools 
for checking the connectivity to a particular host. 

Checking Connectivity to a Host 

Once you know you have a link and no duplex mismatch, the next step is to ping 
your default gateway. You should have configured the default gateway (gw) either 
in the /etc/sysconf ig/network file or in the individual network card's /etc/ 
sysconf ig/network-script/if cfg-eth? script. To check your default gateway in the 
actual routing table, use the ip command as follows: 

# ip route 

10.0.0.0/24 dev ethO proto kernel scope link src 10.0.0.155 
169.254.0.0/16 dev ethO scope link 
default via 10.0.0.1 dev ethO 

The gateway for the default route is 10.0.0.1. To make sure there is IP connectivity to that gate- 
way, use the ping command as follows: 

$ ping 10.0.0.1 

PING 10.0.0.1 (10.0.0.1) 56(84) bytes of data. 



64 bytes from 10.0.0.1 

64 bytes from 10.0.0.1 

64 bytes from 10.0.0.1 

64 bytes from 10.0.0.1 



icmp_seq=l ttl=64 time=0.382 ms 

icmp_seq=2 ttl=64 time=0.313 ms 

icmp_seq=3 ttl = 64 time = 0.360 ms 

icmp_seq=4 ttl = 64 time = 1.43 ms 
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10.0.0.1 ping statistics 

4 packets transmitted, 4 received, 0% packet loss, time 2999ms 
rtt min/avg/max/mdev = 0.313/0.621/1.432/0.469 ms 

By default, ping continues until you press Ctrl+c. Other ping options include the 
following: 

$ ping -a 10.0.0.1 Add an audible ping as ping progresses 

$ ping -c 4 10.0.0.1 Ping 4 times and exit (default in Windows) 

$ ping -q -c 5 10.0.0.1 Show summary of pings (works best with -c) 

# ping -f 10.0.0.1 Send a flood of pings (must be root) 
$ ping -i 3 10.0.0.1 Send packets in 3 -second intervals 

$ ping -s 1500 10.0.0.1 Set packet size to 1500 bytes 
PING 10.0.0.1 (10.0.0.1) 1500(1528) bytes of data. 

Use the ping flood option with caution. By default, ping sends small packets 
(56 bytes). Large packets (such as the 1500-byte setting just shown) are good to 
make faulty NICs or connections stand out. 

Checking Address Resolution 
Protocol (ARP) 

If you're not able to ping your gateway, you may have an issue at the Ethernet MAC 
layer. The Address Resolution Protocol (ARP) can be used to find information at the 
MAC layer. To view and configure ARP entries, use the arp or ip neighbor command. 
This example shows arp listing computers in the ARP cache by hostname: 

# arp -v List ARP cache entries by name 

Address HWtype HWaddress Flags Mask Iface 

ritchie ether 00 : 10 : 5A: AB:F6 : A7 C ethO 

einstein ether 00 : 0B: 6A: 02 :EC: 98 C ethO 

Entries: 1 Skipped: Found: 1 

In this example, you can see the names of other computers that the local computer's 
ARP cache knows about and the associated hardware type and hardware address 
(MAC address) of each computer's NIC. You can disable name resolution to see those comput- 
ers' IP addresses instead: 

# arp -vn List ARP cache entries by IP address 

Address HWtype HWaddress Flags Mask Iface 

10.0.0.1 ether 00 : 10 : 5A: AB:F6 : A7 C ethO 

10.0.0.50 ether 00 : 0B: 6A: 02 : EC : 98 C ethO 

Entries: 1 Skipped: Found: 1 

To delete an entry from the ARP cache, use the -d option: 

# arp -d 10.0.0.50 Delete address 10.0.0.50 from ARP cache 
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Instead of just letting ARP dynamically learn about other systems, you can add static 
ARP entries to the cache using the -s option: 

# arp -s 10.0.0.51 00: 0B: 6A:02 :EC:95 Add IP and MAC addresses to ARP 

To do the same actions with the ip command that you just did with the arp com- 
mand, use the neighbor object (notice that neighbor, nei, and n objects can be 
used interchangeably): 

# ip neighbor 

10.0.0.1 dev ethO lladdr 00 : 10 : 5a: ab: f 6 :a7 DELAY 
10.0.0.50 dev ethO lladdr 00 : 0b: 6a: 02 : ec : 98 REACHABLE 

# ip nei del 10.0.0.50 dev ethO 

# ip n add 10.0.0.51 lladdr 00 : 0B: 6A: 02 :EC: 95 dev ethO 

To query a subnet to see if an IP is already in use, and to find the MAC address of the device 
using it, use the arping command. The arping command is used by if up to avoid 
IP conflicts when bringing an Ethernet NIC up. Here are examples: 

# arping 10.0.0.50 Query subnet to see if 10 .0 .0 .50 is in use 
ARPING 10.0.0.50 from 10.0.0.195 ethO 

Unicast reply from 10.0.0.50 [00 : 0B: 6A: 02 :EC : 98] 0.694ms 
Unicast reply from 10.0.0.50 [00 : 0B: 6A: 02 :EC : 98] 0.683ms 

# arping -I ethO 10.0.0.50 Specify interface to query from 

Like the ping command, the arping command continuously queries for the address 
until the command is ended by typing Ctrl+c. Typically, you just want to know if the 
target is alive, so you can run one of the following commands: 

# arping -f 10.0.0.50 Query 10.0.0.50 and stop at the first reply 

# arping -c 2 10.0.0.51 Query 10.0.0.50 and stop after 2 counts 



Tracing Routes to Hosts 



After you make sure that you can ping your gateway and even reach machines that 
are outside of your network, you may still have issues reaching a specific host or net- 
work. If that's true, you can use traceroute to find the bottleneck or point of failure: 

$ traceroute boost.turbosphere.com Follow the route taken to a host 
traceroute to boost.turbosphere.com (66 . 113 . 99 . 70) , 30 hops max, 40 byte packets 

1 10.0.0.1 (10.0.0.1) 0.281 ms 0.289 ms 0.237 ms 

2 tl-03.hbci.com (64.211.114.1) 6.213 ms 6.189 ms 6.083 ms 

3 172.17.2.153 (172.17.2.153) 14.070ms 14.025ms 13.974ms 

4 so-0-3-2.ar2.MINl.gblx.net (208.48.1.117) 19.076 ms 19.053 ms 19.004 ms 

5 sol-0-0-2488M.ar4.SEAl.gblx.net (67.17.71.210) 94.697 ms 94.668 ms 94.612ms 

6 64.215.31.114 (64.215.31.114) 99.643 ms 101.647 ms 101.577 ms 

7 dr02-vl09.tac.opticfusion.net (209.147.112.50) 262.301ms 233.316ms 233.153 ms 

8 dr01-vl00.tac.opticfusion.net (66.113.96.1) 99.313 ms 99.401 ms 99.353 ms 

9 boost.turbosphere.com (66.113.99.70) 99.251 ms 96.215 ms 100.220 ms 
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As you can see, the longest hop is between 4 (Global Crossing probably in Minneapolis) 
and 5 (GC in Seattle). That gap is not really a bottleneck; it just reflects the distance 
between those hops. Sometimes, the last hops look like this: 

28 * * * 

29 * * * 

30 * * * 

The lines of asterisks (*) at the end of the trace can be caused by firewalls that block 
traffic to the target. However, if you see several asterisks before the destination, those 
can indicate heavy congestion or equipment failures and point to a bottleneck. 

By default, traceroute uses UDP packets, which provides a more realistic perform- 
ance picture than ICMP. That's because some Internet hops will give lower priority to 
ICMP traffic. 

By default, traceroute connects to port 80. You can set a different port using the 
-p option: 

# traceroute -p 25 boost.turbosphere.com Connect to port 25 in trace 

You can view IP addresses instead of hostnames by disabling name resolution of hops: 

$ traceroute -n boost.turbosphere.com Disable name resolution in trace 

An alternative to traceroute is the tracepath command, which also uses UDP to perform 
the trace: 

$ tracepath boost.turbosphere.com Use UDP to trace the route 

To view and manipulate the kernel's routing table, the route command used to be 
the tool of choice. This is slowly being replaced by the ip route command. For the 
most part, the SUSE network scripts rely on ip route. But it doesn't hurt to be famil- 
iar with both commands, because route is still quite commonly used. 

You can use the old route command to display your local routing table. Here are two 
examples of the route command, with and without DNS name resolution: 

# route Display local routing table information 
Kernel IP routing table 

Destination Gateway Genmask Flags Metric Ref 

10.0.0.0 * 255.255.255.0 U 

default ritchie 0.0.0.0 UG 

# route -n Display routing table without DNS lookup 
Kernel IP routing table 

Destination Gateway Genmask Flags Metric Ref 

10.0.0.0 * 255.255.255.0 U 

0.0.0.0 10.0.0.1 0.0.0.0 UG 



Use 


Iface 





ethO 





ethO 


Use 


Iface 





ethO 





ethO 
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You can add a default gateway using the gw option: 

# route add default gw 10.0.0.2 Add 10.0.0.2 as default gateway 

You can add a new route to your network by specifying either the interface (ethO) or IP 
address of the gateway (such asgw 10.0.0.100): 

# route add -net 192.168.0.0 netmask 255.255.255.0 ethO 

# route add -net 192.168.0.0 netmask 255.255.255.0 gw 10.0.0.100 

You can delete a route using the del option: 

# route del -net 192.168.0.0 netmask 255.255.255.0 Delete a route 

Using the newer Ip command, you can do the same activities just shown with the route 
command. Here are three different ways to show the same basic routing information: 

# ip route show Display basic routing information 
10.0.0.0/24 dev ethO proto kernel scope link src 10.0.0.195 
169.254.0.0/16 dev ethO scope link 

default via 10.0.0.1 dev ethO 

# ip route Display basic routing (example #2) 

# ip r Display basic routing (example #3) 

Here are some examples for adding and deleting routes with ip: 

# ip r add 192.168.0.0/24 via 10.0.0.100 dev ethO Add route to interface 

# ip r add 192.168.0.0/24 via 10.0.0.100 Add route no interface 

# ip r del 192.168.0.0/24 Delete route 

To make a new route permanent, create a /etc/sysconf ig/network/ file named ifcfg- 
ethx (for example, if cf g-ethO) and place the information about the new route for 
that network interface in that file. For example, to add the route added with the ip 
command above, add the following lines to /etc/sysconf ig/network/if cfg-ethO: 

ADDRESS0=192 . 168 .0.0 
NETMASK0=255. 255. 255.0 
GATEWAY0 = 10.0.0.100 

Displaying netstat Connections and Statistics 

The tools above cover network troubleshooting mostly at the network layer (layer 3). 
To display information about packets sent between transport layer protocols (TCP and UDP) and ICMP, 

you can use the netstat command: 

$ netstat -s | less Show summary of TCP, ICMP, UDP activities 
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You can see a list of all TCP connections, including which process is handling the connection: 

# netstat -tanp View active TCP connections 

Active Internet connections (servers and established) 

Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name 

tcp 127.0.0.1:631 0.0.0.0:* LISTEN 2039/cupsd 

tcp 127.0.0.1:25 0.0.0.0:* LISTEN 2088/sendmail 



You can also view active UDP connections as follows: 

# netstat -uanp View active UDP connections 

Active Internet connections (servers and established) 

Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name 

udp 0.0.0.0:631 0.0.0.0:* 2039/cupsd 

udp 192.168.122.1:123 0.0.0.0:* 2067/ntpd 



To narrow your output from netstat to daemons bound to a TCP port, look for the word listen. For 
example: 

# netstat -tanp | grep -i listen View daemons listening to a port 

The command just shown is a great way to resolve port usage conflicts between 
daemons. 



Other Useful Network Tools 

If you'd like to see header information about packets as they are sent and received by your 
system, use tcpdump. The tcpdump command has a lot of advanced features, most of 
which revolve around filtering and finding a needle in a haystack of packets. If you 
run tcpdump on a remote machine, your screen will be flooded with all the ssh traffic 
between your client and the remote machine. To get started without having to learn 
too much about how tcpdump filtering works, run the following command: 

# tcpdump | grep -v ssh Find packets except those associated with ssh 

If you'd like to dig deeper into packet-level traffic, use wire shark (formerly known 
as ethereal). Make sure you have the wireshark package installed. You can run 
wireshark with X over ssh on a remote machine. Wireshark is a very powerful 
packet sniffer that rivals the best commercial tools. 

To explore networks and remote machines and see what services they offer, use nmap. The nmap 
command is the most common port scanner. It was even featured in the movie The 
Matrix Reloaded\ Make sure that you are authorized to scan the systems or networks 
you are scanning. The nmap command is part of the nmap package and can be run 
as a user, but several scan types require root privileges. 
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Here's how to do a basic host scan with nmap: 

# nmap 10.0.0.1 Scan ports on computer at 10.0.0.1 

To get maximum verbosity from nmap, use the - w option: 

# nmap -w 10.0.0.1 Show maximum verbosity from nmap output 

To use nmap to scan an entire network, use the network address as an argument. In the fol- 
lowing example, we add the -sP option to tell nmap to perform a simple ping sweep: 

# nmap -w -sP 10.0.0.0/24 Scan hosts on an entire network 

You can be very specific about the information that nmap gathers for you. In the fol- 
lowing example, the -P0 option tells nmap not to use ping (this is good for scanning 
machines that don't respond to ping). The -0 option displays OS fingerprinting for 
the machine you are scanning. The -p 100-200 option tells nmap to scan only ports 
100 through 200: 

# nmap -w -P0 -0 -p 100-200 10.0.0.1 No ping, OS fingerprint, ports 100-200 

The nmap command has a lot more options for advanced usage. Refer to the nmap 
man page (man nmap) for further information. 



Summary 



Nearly every aspect of the network connections from your SUSE system can be con- 
figured, checked, and monitored using command line tools. You can view and change 
settings of your NICs using the ethtool command. You can view network statistics 
with netstat. 

To start and stop your network, commands such as service, chkconf ig, ifup, 
and if down are easy manage. Once a connection is established, you can see statistics 
about that connection using if conf ig and ip commands. 

Besides using wired Ethernet cards, other network hardware such as wireless 
LAN cards and dial-up modems are supported in Linux. Use commands such 
as iwconf ig to work with wireless interfaces, and wvdialconf and minicom to 
configure modems. 

To check DNS name resolution, use the dig, host, and hostname commands. 
Commands for checking connectivity and routes to a host include ping, arp, 
traceroute, and ip. 
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12 

Accessing 
Network Resources 



In the time it takes to fire up a graphical FTP 
client, you could already have downloaded a few 
dozen files from a remote server using command 
line tools. Even when a GUI is available, com- 
mands for transferring files, web browsing, shar- 
ing directories, and reading mail can be quick 
and efficient to use. When no GUI is available, 
they can be lifesavers. 

This chapter covers commands for accessing 
resources (files, e-mail, shared directories, and 
online chats) over the network. 



IN THIS CHAPTER 

Web browsing 
with links 

Wget, curl, Iftp, and 
scp for file transfers 

Sharing directories 
with NFS, Samba, 
and SSHFS 

IRC chats with irssi 

Mail and mutt e-mail 
clients 



Running Commands 
to Browse the Web 

Text-mode web browsers provide a quick way to check that a web server 
is working or to get information from a web server when a useable GUI 
isn't available. The once-popular lynx text-based browser was supplanted 
in most Linux systems by the links browser, which was later replaced by 
el inks on many versions of Linux. On SUSE, install the links and lynx 
packages to get these text-based web browsers. 

The links browser runs in a terminal window. Aside from not displaying 
images in the terminal, links can handle most basic HTML content and 
features: tables, frames, tabbed browsing, cookies, history, mime types, and 
simple cascading style sheets. You can even use your mouse to follow links 
and select menu items. Here are some examples of links command lines: 

$ links Launches empty browser, press Esc to get menu to enter URL 

$ links www.handsonhistory.com Opens file name or URL you request 

$ links http://www.handsonhistory.com Opens URL you request 
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If you have a mouse available, click near the top of the terminal window to see the menu. 
Select the menu name or item you want. Select a link to go to that link. Table 12-1 shows 
links keyboard navigation keys. 



Table 12-1: Control Keys for Using links 



Keys 


Description 


Keys 


Description 


Esc 

(or F9/F8) 


Toggle menu on and off 
(then use arrow keys or 
mouse to navigate menus). 


— 


View page information. 


Down 
arrow 


Go to next link or editable 
field on page. 


Ctrl+r 


Reload page. 


Up arrow 


Go to previous link or 
editable field on the page. 


s, a 


Bookmark current page. 


Right arrow 
or Enter 


Go forward to highlighted 
link. Enter text in high- 
lighted form field. 


PageUp 


Scroll one page up. 


Left arrow 


Go back to previous page. 


PageDown 


Scroll one page down. 


/ 


Search forward. 


g 


Go to a URL. 


7 


Search backwards. 


d 


Download current link. 


n 


Find next. 


s 


View bookmarks. 


Shift+n 


Find previous. 


q or Ctrl+c 


Exit links. 



Per-user settings are stored in each user's $HOME/ . links directory. 



Transferring Files 



Commands in Linux for downloading files from remote servers (HTTP, HTTPS, FTP, 
or SSH) are plentiful and powerful. You might choose one command over another 
because of the specific options you need. For example, you may want to perform a 
download over an encrypted connection, resume an aborted download, or do recur- 
sive downloads. This section describes how to use wget, ftp, If tp, scp, and scf tp. 

Downloading Files with wget 

Sometimes you need to download a file from a remote server using the command line. For 
example, you find a link to an RPM software package, but the link goes through several 



216 



82928cl2.qxd:Toolbox 11/1/07 12:28 PM Pac 



217 



Chapter 12: Accessing Network Resources 



HTTP redirects that prevent rpm from installing straight from HTTP. Or you may want 
to script the automated download of a file, such as a log file, every night. 

The wget command can download files from web servers (HTTP and HTTPS) and FTP 
servers. With a server that doesn't require authentication, a wget command can be as 
simple as the wget command and the location of the download file: 

$ wget \ 

http : / /dag .wieers . com/rpm/packages/acroread/acroread-5 .0.10-l.el5.rf.i386. rpm 

If, for example, an FTP server requires a login and password, you can enter that information on 
the wget command line in the following forms: 

$ wget ftp: //user :password@ftp. example. com/path/ to/file 

$ wget --user=user --password=password ftp://ftp.example.com/path/to/file 

For example: 

$ wget ftp: / /chr is :mykuulpwd@f tp.linuxtoys.net/home/chris/image.jpg 
$ wget --f tp-user=chris --ftp-password=mykuulpwd \ 
ftp: //ftp. linuxtoys.net/home/chris/image.jpg 

You can use wget to download a single web page as follows: 

$ wget http://www.wiley.com Download only the Web page 

If you open the resulting index . html, you'll have all sorts of broken links. To down- 
load all the images and other elements required to render the page properly, use the 
-p option: 

$ wget -p http://www.wiley.com Download Web page and other elements 

But if you open the resulting index . html in your browser, chances are you will still 
have all the broken links even though all the images were downloaded. That's because 
the links need to be translated to point to your local files. So instead, do this: 

$ wget -pk http://www.wiley.com Download pages and use local file names 

And if you'd like wget to keep the original file and also do the translation, type this: 

$ wget -pkK http://www.wiley.com Rename to local names, keep original 

Sometimes an HTML file you download does not have a . html extension, but ends 
in . asp or . cgi instead. That may result in your browser not knowing how to open 
your local copy of the file. You can have wget append . html to those files using the 
-E option: 

$ wget -E http://www.aspexamples.com Append .html to downloaded files 
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With the wget command, you can recursively mirror an entire web site. While copy- 
ing files and directories for the entire depth of the server's file structure, the -m option 
adds timestamping and keeps FTP directory listings. (Use this with caution, because 
it can take a lot of time and space) 

$ wget -m http://www.linuxtoys.net 

Using some of the options just described, the following command line results in the 
most usable local copy of a web site: 

$ wget -mEkK http://www.linuxtoys.net 

If you have ever had a large file download (such as a CD or DVD image file) discon- 
nect before it completed, you may find the -c option to wget to be a lifesaver. Using 
-c, wget resumes where it left off, continuing an interrupted file download. For example: 

$ wget http://example.com/DVD.iso Begin downloading large file 

95% [========== ] 685,251,583 55K/s Download killed before completion 

$ wget -c http://example.com/DVD.iso Resume download where stopped 

HTTP request sent, awaiting response... 206 Partial Content 
Length: 699,389,952 (667), 691,513 (66M) remaining [text/plain] 

Because of the continue feature (-c), wget can be particularly useful for those with 
slow Internet connections who need to download large files. If you have ever had a 
several-hour download get killed just before it finished, you'll know what we mean. 
(Note that if you don't use the -c when you mean to resume a file download, the file 
will be saved to a different file: the original name with a . 1 appended to it.) 

Transferring Files with cURL 

The client for URLs application (curl command) provides similar features to wget 
for transferring files using Web and FTP protocols. However, the curl command can 
also transfer files using other popular protocols, including SSH protocols (SCP and 
SFTP), LDAP, DICT, Telnet, and File. 

Instead of supporting large, recursive downloads (as wget does), curl is designed for 
single-shot file transfers. It does, however, support more protocols (as noted) and some 
neat advanced features. Here are a few interesting examples of file transfers with curl: 

$ curl -0 ftp: //kernelorg. mirrors. tds. net/pub/linux/kernel/vl. 0/patch[6-8] .sign 
$ curl -00 ftp: //kernelorg. mirrors. tds. net/pub/linux/kernel/v2 .6/ChangeLog- \ 

2. 6. {1,4} 
$ curl -0 ftp: //chris :MyPasswd@f tp.example.com/home/chris/fileA \ 

-Q '-DELE fileA' 
$ curl -T install.log ftp: //chris:MyPasswd@ftp. example.com/tmp/ \ 

-Q "-RNFR install.log" -Q "-RNTO Xinstall.log 
$ curl ftp://ftp.kernel.org/%2fpub/ List /pub/ contents 
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The first two commands show how to use square brackets to indicate a range [6-8] 
and curly brackets for a list {1 , 4) of characters or numbers to match files. 

The third command line illustrates how to add a user name and password (chris : 
MyPasswd), download a file (f ileA) from the server, and then delete the file on the 
server once the download is done (-Q ' -DELE f ileA ' ). 

The fourth example uploads (-T) the file install . log to an FTP server. Then it 
renames the remote file to Xinstall . log. The last example tells curl to list the 
contents of the /pub/ directory at ftp . kernel . org. 

Transfering Files with FTP Commands 

SUSE comes with the standard FTP client (ftp command) that works the same way it 
does on most Unix and Windows systems. We recommend you use the full-featured, 
user- friendly If tp instead, part of the lftp package. (The If tp command replaces 
ncf tp, an older command.) 

With these FTP clients, you open a session to the FTP server (as opposed to just grab- 
bing a file, as you do with wget and curl). Then you navigate the server much as you 
would a local file system, getting and putting documents across the network connec- 
tion. Here are examples of how to connect to an FTP server with lftp: 

$ lftp mirrors.kernel.org Anonymous connection 

lftp mirrors .kernel .org: ~> 

$ lftp francois@example.com Authenticated connection 

lftp example .com: ~> 

$ lftp -u francois example.com Authenticated connection 

Password: ****** 

lftp example .com: ~> 

$ lftp -u francois, Mypwd example.com Authentication with password 

lftp example .com: ~> 

$ lftp Start lftp with no connection 

lftp : ~> open mirrors.kernel.org Start connection in lftp session 

lftp mirrors .kernel .org: ~> 

WARNING! The fourth example should be avoided in real life. Passwords that are 
entered in a command line end up stored in clear text in your ~ I . bash_history. 
They may also be visible to other users in the output of ps auwx. 

Once a connection is established to an FTP server, you can use a set of commands 
during the FTP session. FTP commands are similar to shell commands. Just like in 
a bash shell, you can press Tab to autocomplete file names. In a session, lftp also 
supports sending multiple jobs to the background (Ctrl+z) and returning them to 
foreground (wait or f g). These are useful if you want to continue traversing the 
FTP site while files are downloading or uploading. Background jobs run in parallel. 
Type j obs to see a list of running background jobs. Type help to see a list of lftp 
commands. 
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The following sample If tp session illustrates useful commands when downloading: 



Check current directory 



$ lftp mirrors.kernel.org 

lftp mirrors .kernel . org: ~> pwd 

ftp: //mirrors .kernel .org 

lftp mirrors .kernel . org: ~> Is List current directory 

drwxr-sr-x 8 400 400 4096 Jul 02 20:19 debian/ 

drwxr-xr-x 7 537 537 77 May 21 21:37 opensuse/ 



lftp mirrors .kernel . org: ~> cd opensuse/distribution/10.3-RC2/iso/cd Change 

directory 
lftp mirrors .kernel . org: ... > get openSUSE-10.3-RC2-KDE-Live-i386.iso Download a 

file 
openSUSE-10.3-RC2-KDE-Live-i386.iso at 776398 (1%) 467.2K/S eta:26m {Receiving 
data] 
lftp mirrors .kernel . org: ... > <Ctrl+z> Send download to background 



lftp mirrors.kernel.org: 
lftp mirrors.kernel.org: 
lftp mirrors.kernel.org: 
lftp mirrors.kernel.org: 



. > mget /gnu/ed/* Get all in /gnu/ed 

. > !ls Run local Is 

. > bookmark add 10.3-RC2 Bookmark location 

. > quit Close lftp 



This session logs in as the anonymous user at mirrors . kernel . org. After changing 
to the directory containing the ISO image I was looking for, 1 downloaded it using 
the get command. By typing Ctrl+z, the download could continue while I did other 
activities. Next, the mget command (which allows wildcards such as *) downloaded 
all files from the /gnu/ed directory. 

Any command preceded by an exclamation mark (such as ! Is) is executed by the local 
shell. The bookmark command saves the current location (in this case, ftp : / /mirrors 
.kernel . org/ opensuse/ distribution/ 10 . 3-RC2/iso/cd) under the name 10.3- 
RC2, so next time I can run lftp 10 . 3-RC2 to return to the same location. The quit 
command ends the session. 

Here are some useful commands during an authenticated lftp upload session. This assumes you 
have the necessary file permissions on the server: 



$ lftp chris@example.com 

Password: ******* 

lftp example. com: ~> led /home/chris/songs 

lftp example. com: ~> cd pub/uploads 

lftp example. com: ~> mkdir songs 

lftp example. com: ~> chmod 700 songs 

lftp example. com: ~> cd songs 

lftp example. com: ~> put song.ogg tune.ogg 

3039267 bytes transferred 

lftp example. com: ~> mput /var/songs/* 

lftp example. com: ~> quit 



Change to a local directory 
Change to server directory 
Create directory on server 
Change remote directory perms 
Change to the new directory 
Upload files to server 

Upload matched files 
Close lftp 
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The If tp session illustrates how you can use shell command names to operate on 
remote directories (provided you have permission). The mkdir and chmod com- 
mands create a directory and leave permissions open only to your user account. The 
put command uploads one or more files to the remote server. The mput command 
can use wildcards to match multiple files for download. Other commands include 
mirror (to download a directory tree) and mirror -R (to upload a directory tree). 

If tp also provides a shell script for non-interactive download sessions: If tpget. The syntax 
of If tpget is similar to that of the wget command: 

$ If tpget ftp: //mirrors. kernel.org/centos/ 5. 07 os/x86_64 /RELEASE-NOTES -en 

Keep in mind that standard FTP clients are insecure because they do all their work in 
clear text. So your alternative, especially when security is a major issue, is to use SSH 
tools to transfer files. 

Using SSH Tools to Transfer Files 

Because SSH utilities are among the most important tools in a system administrator's 
arsenal of communications commands, some of the more complex uses of configuring 
and using SSH utilities are covered in Chapter 13. However, in their most basic form, 
SSH utilities are the tools you should use most often for basic file transfer. 

In particular, the scp command will do most of what you need to get a file from one 
computer to another, while making that communication safe by encrypting both the 
password stage and data transfer stage of the process. The scp command replaces the 
rep command as the most popular tool for host-to-host file copies. 

WARNING! You do not get a warning before overwriting existing files with scp, 
so be sure that the target host doesn't contain any files or directories you want that 
are in the path of your scp file copies. 

Copying Remote Files with scp 

To use scp to transfer files, the SSH service (usually the sshd server daemon) must be 
running on the remote system. Here are some examples of useful scp commands: 

$ scp myfile francois@serverl: /tmp/ Copy my file to serverl 

Password: ****** 

$ scp serverl: /tmp/myfile . Copy remote myfile to local working dir 

Password: ****** 

Use the -p option to preserve permissions and timestamps on the copied files: 

$ scp -p myfile serverl: /tmp/ 
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If the SSH service is configured to listen on a port other than the default port 22, use 
-p to indicate that port on the scp command line: 

$ scp -P 12345 myfile serverl:/tmp/ Connect to a particular port 

To do recursive copies, from a particular point in the remote file system, use the 
-r option: 

$ scp -r mydir f rancois@serverl: /tmp/ Copies all mydir to remote /tmp 

Although scp is most useful when you know the exact locations of the file(s) you 
need to copy, sometimes it's more helpful to browse and transfer files interactively. 

Copying Remote Files in sftp and Iftp Sessions 

The sftp command lets you use an FTP-like interface to find and copy files over SSH 
protocols. Here's an example of how to start an sftp session: 

$ sftp chris@serverl 

chris@serverl ' s password: ***** 
sftp> 

Use sftp in the same manner as you use regular FTP clients. Type ? for a list of com- 
mands. You can change remote directories (cd), change local directories (led), check 
current remote and local directories (pwd and lpwd), and list remote and local con- 
tents (is and lis). Depending on the permission of the user you logged in as, you 
may be able to create and remove directories (mkdir and rmdir), and change permis- 
sions (chmod) and ownership / group (chown and chgrp) of files and directories. 

You can also use lftp (discussed earlier in this chapter) as an sftp client. Using 
lftp adds some user-friendly features such as path completion using the Tab key: 

$ lftp sf tp: //chris@serverl 

Password: ******** 
lftp chris@serverl : ~> 

Using Windows File Transfer Tools 

In many cases, people need to get files from Linux servers using Windows clients. If 
your client operating system is Windows, you can use one of the following open source 
tools to get files from Linux servers: 

□ WinSCP (http: //winscp.net) — Graphical scp, sftp, and FTP client for 
Windows over SSH1 and SSH2 protocols. 

□ FileZilla (http: //f ilezilla. sourceforge .net) — Provides graphical client 
FTP and SFTP services in Windows, as well as offering FTP server features. 
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□ PSCP (www. chiark.greenend. org.uk/~sgtatham/putty/) — Command 
line scp client that is part of the PuTTY suite. 

□ PSFTP (www. chiark. greenend. org.uk/~sgtatham/putty/) — Command 
line sf tp client that is part of the PuTTY suite. 



Sharing Remote Directories 



Tools described to this point in the chapter provide atomic file access, where a con- 
nection is set up and files are transferred in one shot. In times where more persist- 
ent, ongoing access to a remote directory of files is needed, services for sharing and 
mounting remote file systems can be most useful. Such services include Network 
File System (NFS), Samba, and SSHFS. 

Sharing Remote Directories with NFS 

Assuming a server is already running the NFS service (typing service nf s start 
as root starts it in SUSE), you can use exportf s and showmount commands to see 
available and mounted shared directories. Mounting a shared directory is done with 
special options to the standard mount command. 

SUSE installs an NFS client package by default, but not a server. You can choose the 
nfs-server package for a server that runs in user space, or nfs-kernel-server for a kernel- 
based server. To get the exportf s command, install the nfs-kernel-server package. You 
need to install one of these packages to set up an NFS server. 

Viewing and Exporting NFS Shares 

Run from the NFS server, this exportf s command shows all shared directories available 
from that server: 

# /usr/sbin/exportf s -av 

/export /my share client . example. com (ro,wdelay, root_squash,no_subtree_check) 
/mnt/public <world> (rw,wdelay, root_squash,no_subtree_check) 

The two directories being shared are / export /myshare and /mnt/public. The 
first is only available to host computer client . example . com, whereas the second 
is available to everyone. Options for each share are shown in parenthesis. The first 
share is available read-only (ro), writes to the share are delayed to improve perform- 
ance when more writes are expected (wdelay), and requests from the root user on 
the client are mapped into the anonymous UID (root_squash). Also, a less thor- 
ough check of file system permission is done (no_subtree_check). The second 
share allows read-write mounting (rw). 
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Add and modify shared NFS directories by making changes to the /etc/exports file. You can 
define permissions, as described in the exports man page. To get changes to take 
effect, type any of the following as root: 

# service nfs reload Reload exported shared directories 

# exportfs -r Reload exported shared directories 

# exportfs -rv Verbose reload of exported shares 
exporting client . example. com: /export/myshare 

exporting * ; /mnt/public 

From the Linux server system, you can use the showmount command to see what shared 
directories are available from the local system. For example: 

# /usr/sbin/ showmount -e 

Export list for server.example.com 
/export/myshare client . example. com 
/mnt/public * 

From a client Linux system, you can use the showmount command to see what shared 
directories are available from a selected computer. For example: 

# /usr/sbin/ showmount -e server.example.com 

/export/myshare client. example. com 
/mnt/public * 

Mounting NFS Shares 

Use the mount command to mount a remote NFS share on the local computer. Here is 
an example: 

# mkdir /mnt/server-share 

# mount server.example.com: /export/myshare /mnt/server-share 

This example notes the NFS server (server . example . com) and the shared directory 
from that server (/export/myshare). The local mount point, which must exist before 
mounting the share, appears at the end of the command (/mnt/server-share). 

Pass NFS-specific options to the mount command by adding them after the -o option: 

# mount -o rw, hard, intr server.example.com: /export/myshare /mnt/server-share 

The rw option mounts the remote directory with read-write permissions, assuming 
that permission is available. With hard set, someone using the share will see a server 
not responding message when a read or write operation times out. If that hap- 
pens, having set the intr option lets you interrupt a hung request to a remote server (type 
Ctrl+c). 
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By default, NFS version 3 (nfs3) protocol is used to connect to the share. To use NFS 
version 4, which is designed to work over the Internet and through firewalls, indicate 
that protocol as the file system type on the command line as follows: 

# mount -t n£s4 server.example.com: / /mnt/server-share 

Use this command as a guideline. You need to create the mount-point directory first. 
And, you should ensure that you have configured NFS to your liking. 

NOTE Depending on which version ofSUSE you are using, the implementation of 
NFS v4 may not be robust enough for production. It may be safer or more reliable to 
tunnel earlier versions of NFS over SSH. You can find more information on this topic 
with an Internet search for "nfs ssh". See www . howtof orge . com/nf s_ssh_ 
tunneling and http : / /tldp . org/HOWTO/NFS-HOWTO/ security .html for 
more on security and NFS. 

Sharing Remote Directories with Samba 

Samba is the open source implementation of the Windows file and print sharing pro- 
tocol originally known as Server Message Block (SMB) and now called Common 
Internet File System (CIFS). There is an implementation of Samba in Linux, as well 
as in many other operating systems. 

Graphical tools for sharing, querying, and mounting shared SMB directories from 
Windows include the Samba SWAT web-based administration tool. To use the SWAT tool 
in Linux, install the samba-swat package, enable the xinetd service (by typing service 
xinetd start), and turn on SWAT (chkconfig swat on). Open SWAT by pointing 
your browser at the SWAT service (http: //localhost : 9 01) and typing the root user 
name and password. 

To get SWAT started on SUSE, you may need to add a port number to the SWAT con- 
figuration file for xinetd. (The port number is defined as 901 in /etc/services.) If 
you cannot connect to swat from a web browser, edit the file /etc/xinetd . d/swat. 
The port number setting is the only change necessary: 

# SWAT is the Samba Web Administration Tool. 
service swat 



port 


= 


901 


socket_type 


= 


stream 


protocol 


= 


tcp 


wait 


= 


no 


user 


= 


root 


server 


= 


/usr/sbin/swat 


only_from 


= 


127.0.0.1 


log_on_failure 


+= 


USER ID 
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Commands for working with Samba shares can be used to query SMB servers, mount 
directories, and share directories. 

Viewing and Accessing Samba Shares 

To scan your network for SMB hosts, type the following: 

$ findsmb 

*=DMB 
+=LMB 
IP ADDR NETBIOS NAME WORKGROUP/OS/VERSION 

192.168.1.1 SERVER1 + [MYWORKGROUP] [Unix] [Samba 3 . . 26a-3-1478-SUSE- 

L10.3] 

To view a text representation of your network neighborhood (shared directories and printers), use 

subtree: 

# smbtree 
Password: ****** 
MYGROUP 

WTHOMPSON Samba Server Version3 . . 26a-3-1478-SUSE-SL10 . 3 

\\THOMPSON\hp2100 HP LaserJet 2100M Printer 

\\THOMPSON\IPC$ IPC Service (Samba Server Version 
3.0.2 6a-3-147 8-SUSE-SL10.3) 

WEINSTEIN Samba Server 

\\EINSTEIN\hp5550 HP DeskJet 5550 Printer 

\\EINSTEIN\IPC$ IPC Service (Samba Server) 

To add an existing Linux user as a Samba user, use the smbpasswd command: 

# smbpasswd -a francois 

New SMB password: ****** 
Retype new SMB password: ****** 
Added user francois 

To list services offered by a server to an anonymous user, type the following: 

$ smbclient -L server 

Password: ****** 

Anynymous login successful 

Domain= [MYGROUP] OS= [Unix] Server=Samba 3 . .26a-3-1478-SUSE-SL10 . 3 

tree connect failed: NT_STSTUS_LOGON_FAILURE 

Here's the output from smbclient for a specific user named francois: 

$ smbclient -L server -U francois 

Password: ****** 

Domain= [MYGROUP] OS= [Unix] Server= [Samba 3 . . 26a-3-1478-SUSE-SL10 . 3 ] 
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Sharename Type Comment 



IPC$ IPC IPC Service (Samba Server Version 3 . . 26a-3-1478-SUSE 

SL10.3) 
hp5550 Printer HP DeskJet 5550 Printer 

Server Comment 

THOMPSON Samba Server Version 3 . . 26a-3-1478-SUSE-SL10 . 3 

Workgroup Master 

MYGROUP THOMPSON 

To connect to a Samba share FTP-style, type the following: 

$ smbclient //192 . 168 . 1. 1/myshare -U francois 

Password: 

Domain= [MYWORKGROUP] OS= [Unix] Server= [Samba 3 . . 26a-3-1478-SUSE-SL10 . 3 ] 

smb : \ > 

As with most FTP clients, type help or ? to see a list of available commands. Likewise, 
you can use common shell-type commands, such as cd, Is, get, put, and quit, to get 
around on the SMB host. 

Mounting Samba Shares 

You can mount remote Samba shares on your local file system much as you would a local file 
system or remote NFS file system. To mount the share: 

# mount, cifs //192 . 168.1. 1/myshare /iimt/mymount/ \ 

-o username=francois,password=MySecret 

NOTE The Samba file system (smbf s) is deprecated and should no longer be 
used. Instead, indicate CIFS f-t cifs) as the file system type when you mount 
a remote Samba share. 

You can see the current connections and file locks on a server using the smbstatus command. 
This will tell you if someone has mounted your shared directories or is currently using 
an smbclient connection to your server: 

# smbstatus 

Samba version 3 . . 26a-3-1478-SUSE-SL10 . 3 
PID Username Group Machine 



5466 francois francois 10.0.0.55 (10.0.0.55) 

Service pid machine Connected at 

myshare 5644 10.0.0.55 Tue Jul 3 15:08:29 2007 
No locked files 
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To see a more brief output, use the -b option: 

$ smbstatus -b 

Looking Up Samba Hosts 

NetBIOS names are used to identify hosts in Samba. You can determine the IP address of a 
computer using the nmblookup command to broadcast for a particular NetBIOS name 
on the local subnet as follows: 

$ nmblookup thompson 

querying thompson on 192.168.1.255 
192.168.1.1 serverl<00> 

To find the IP address for a server on a specific subnet use the -u option: 

$ nmblookup -U 192.168.1.255 serverl 

querying serverl on 192.168.1.255 
192.168.1.1 serverl<00> 

Checking Samba Configuration 

If you are unable to use a Samba share or if you have other problems communicating 
with your Samba server, you can test the Samba configuration on the server. The 
testparm command can be used to check your main Samba configuration file (smb. conf): 

$ testparm 

Load smb config files from /etc/samba/smb.conf 

Processing section " [homes] " 

Processing section " [profiles] " 

Processing section " [users] " 

Processing section " [groups] " 

Processing section "[printers]" 

Processing section "[print$]" 

Processing section " [myshare] " 

Loaded services file OK. 

Server role: ROLE_ST AND ALONE 

Press Enter to see a dump of your service definitions 

After pressing Enter as instructed, you can see the settings from your smb . conf file. 
Here's how an entry for the myshare shared directory, used earlier in an example, 
might appear in the smb. conf file: 



[myshare] 



path = /home/francois 
username = francois 
valid users = francois 
hosts allow = einstein 
available = yes 
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This entry allows the Samba user francois to access the /home/francois directory 
(represented by the myshare share name) from the host computer named einstein. 
The share is shown as being currently available. 

The previous example of testparm showed the entries you set in the smb . conf file. 
However, it doesn't show all the default entries you didn't set. You can view those using the 
-v option. Pipe it to the less command to page through the settings: 

$ testparm -v | less 

If you want to test a configuration file before it goes live, you can tell testparm to use a file 
other than /etc /samba/ smb. conf : 

$ testparm /etc/samba/test-smb.conf 

Sharing Remote Directories with SSHFS 

Another magical trick you can do over the SSH protocol is mount remote file systems. 
Using the SSH file system (sshf s), part of the sshfs package, you can mount any direc- 
tory from an SSH server that your user account can access from your local Linux sys- 
tem, sshfs provides encryption of the mount operation as well as of all the data being 
transferred. Another cool aspect of sshfs is that it requires no setup on the server side 
(other than having SSH service running). 

Here is a quick procedure for mounting a directory of documents from a remote server to a local 
directory. Doing this only requires that the remote server is running SSH, is accessible, 
and that the directory you want is accessible to your user account on the server. Here 
we are mounting a directory named /var/docs from the host at 10. 0.0. 50 to a 
mount point called /mnt/docs on the local system: 

# mkdir /mnt/docs Create mount point 

# sshfs chris@10. 0. 0.50: /var/docs /mnt/docs Mount remote directory 

When you are done using the remote directory, you can unmount it with the f usermount 
command: 

# fusermount -u /mnt/docs Unmount remote directory 



Chatting with Friends in IRC 



Despite the emergence of instant messaging, Internet Relay Chat (IRC) is still used by 
a lot of people today. Freenode.net has tons of chat rooms dedicated to supporting 
major open source software projects. In fact, many people stay logged into them all 
day and just watch the discussions of their favorite Linux projects scroll by. This is 
known as lurking. 
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The xchat utility is a good graphical, multi-operating system IRC client. The elite way 
to do IRC is to run a text-mode client in screen on an always-on machine, such as 
an old server. Another similar option is to use an IRC proxy client, also known as a 
bouncer, such as dircproxy. 

The original IRC client was ircll. It allowed the addition of scripts (in some ways 
similar to macros found in productivity suites) that automated some of the commands 
and increased usability. The most popular was PhoEniX by Vassago. Then came BitchX, 
which started as an ircll script and then became a full-blown client. Today, most peo- 
ple use irssi. Install the irssi package to get this client. To launch irssi from SUSE, type: 

$ irssi -n JayJoel99x 

In this example, the user name (nick) is set to JayJoel99x (you should choose your 
own). You should see a blue status bar at the bottom of the screen indicating that you 
are in Window 1, the status window. IRC commands are preceded with a / character. 
For example, to connect to the freenode server, type: 

/connect chat.freenode.net 

If you didn't add your user name on the command line, you are connected to chat 
. freenode . net with the user name you are logged in under. On IRC, a chat room 
is called a channel and has a pound sign (#) in front of the name. Next, try joining the 
#centos IRC channel: 

/join #centos 

Your screen should look similar to Figure 12-1. 
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Figure 12-1: irssi connected to #centos on Freenode 



You are now in the channel in Window 2, as indicated in the status bar. Switch among 
the irssi windows by typing Alt + 1, Alt + 2, and so on (or Ctrl+n and Ctrl+p). To get 
help at any time, type /help command, where command is the name of the command 
you want more information on. Help text will output in the status window, not neces- 
sarily the current window. 

To add to the IRC chat, simply type a message and press Enter to send the message to 
those in the channel. Type /part to leave a channel. Type /quit to exit the program. 
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There is a lot more to irssi. You can customize it and improve your experience sig- 
nificantly. Refer to the irssi documentation (www. irssi . org/documentation) for 
more information about how to use irssi. 



Using Text-Based E-mail Clients 



Most Mail User Agents (MUAs) are GUI-based these days. So if you began using e-mail 
in the past decade or so, you probably think of Evolution, Kmail, Thunderbird, or (on 
Windows systems) Outlook when it comes to e-mail clients. On the first Unix and Linux 
systems, however, e-mail was handled by text-based applications. 

If you find yourself needing to check e-mail on a remote server or other text-based 
environment, venerable text-based mail clients are available and still quite useful. In 
fact, some hard-core geeks still use text-based mail clients exclusively, touting their 
efficiency and scoffing at HTML-based messages. 

The mail clients described in this chapter expect your messages to be stored in stan- 
dard MBOX format on the local system. That means that you are either logged into 
the mail server or you have already downloaded the messages locally (for example, 
by using POP3 or similar). 

NOTE Text-based mail clients can be used to read mail already downloaded by 
other mail clients. For example, you could open your Evolution mail Inbox file 
bytypingma.il -f $HOME/ . evolution/mail/loc/Inbox. 



Managing E-mail with mail 



The oldest command, and easiest to use when you just want a quick check for messages 
in the root user's mailbox on a remote server, is the mail command (/bin/mail). 
Although mail can be used interactively, it is often used for sending script-based e-mails. 
Here are some examples: 

$ mail -s 'My SUSE version' chris@example.com < /etc/SuSE-release 
$ ps auwx | mail -s 'My Process List' chris@example.com 

The two mail examples just shown provide quick ways to mail off some text without 
having to open a GUI mail application. The first example sends the contents of the 
/etc/SuSE-release file to the user chrisSexample . com. The subject (-s) is set to 
' My SUSE Version ' . In the second example, a list of currently running processes 
(ps auwx) is sent to the same user with a subject of ' My Process List 1 . 

NOTE You will likely need to configure sendmail, postfix, or some other applica- 
tion to actually send e-mail to its destination. Otherwise, chris@example.com will 
never know all the processes running on your system. 
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Used interactively, by default the mail command opens the mailbox set by your cur- 
rent shell's $MAIL value. For example: 

# echo $MAIL 

/var/ spool /mail /root 

# mail 

Mail version 8.1 6/6/93. Type ? for help. 

" /var/spool/mail/root " : 25 messages 25 new 

"Logwatch for ab (Linux) " 
"Logwatch for ab (Linux) " 
"Logwatch for ab (Linux) " 
"Logwatch for ab (Linux) " 

"Warning: could not send " 



The current message has a greater-than sign (>) next to it. New messages have an N 
at the beginning, unread (but not new) messages have a U, and if there is no letter, the 
message has been read. The prompt at the bottom (&) is ready to accept commands. 

At this point, you are in command mode. You can use simple commands to move 
around and perform basic mail functions in mail. Type ? to see a list of commands, or type 
the number of the message you want to see. Type v3 to open the third message in the 
vi editor. Type hi 8 to see a list of message headers that begins with message 18. To 
reply to message 7, type r7 (type your message, then put a dot on a line by itself to 
send the message). Type d4 to delete the fourth message (or d4-9 to delete messages 
four through nine). Type ! bash to escape to the shell (then exit to return to mail). 

Before you exit mail, know that any messages you view will be copied from your 
mailbox file to your $HOME/mbox file when you exit, unless you preserve them (pre*). 
To have all messages stay in your mailbox, exit by typing x. To save your changes to 
the mailbox, type q to exit. 

You can open any file that is in MBOX format when you use mail. For example, if you 
are logged in as root user, but want to open the mailbox for the user chris, type this: 

# mail -f /var/spool/mail/chris 



Managing E-mail with mutt 



If you want to use a command line mail client on an ongoing basis, we recommend 
you use mutt instead of mail. The mail command has many limitations, such as not 
being able to send attachments without encoding them in advance (such as with the 
uuencode command), while mutt has many features for handling modern e-mail needs. 
The mutt command is part of the mutt package. 
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Like mail, mutt can also be used to pop off a message from a script, mutt also adds 
the capability to send attachments. For example: 

$ mutt -s "My SUSE Version" -a /etc/SuSE-release \ 

chris@example.com < email-body.txt 
$ mutt -s "My SUSE Version" -a /etc/SuSE-release \ 

chris@example.com < /dev/null 

The first example just shown includes the file email -body . txt as the body of the 
message and attaches the file /etc/SuSE-release as an attachment. The second 
example sends the attachment, but has a blank message body (< /dev/null). 

You can begin your mutt mail session (assuming your default mailbox is $mail) by simply 
typing mutt: 

$ mutt 

/home/chris/Mail does not exist. Create it? ([yes]/no): y 

q:Quit d:Del u:Undel s : Save m:Mail r:Reply g:Group ?:Help 

1 Jun 16 logwatch@ab ( 69) Logwatch for ata (Linux) 

2 Jun 18 logwatch@ab ( 171) Logwatch for ab (Linux) 

3 Jun 18 Mail Delivery S ( 219) Warning: could not send message 

4 Jun 19 logwatch@ab ( 33) Logwatch for ab (Linux) 

--Mutt: /var/spool/mail/root [Msgs:22 New:2 Old:20 63K] -- (date/date) -- (all) -- 

Because mutt is screen-oriented, it is easier to use than mail. As with mail, you use key 
commands to move around in mutt. As usual, type ? to get help. Hints appear across the top 
bar to help you with your mail. Use the up and down arrow keys to highlight the mes- 
sages you want to read. Press Enter to view the highlighted message. Use PageUp and 
PageDown to page through each message. Press i to return to the message headers. 

Search forward for text using slash (/) or backwards using Escape slash (Esc-/). Type 
n to search again. Press Tab to jump to the next new or unread message. Or go to the 
previous one using Esc-Tab. Type s to save the current message to a file. Type d to 
delete a message and u to undelete it. 

To send a new mail message, type m. After adding the recipient and subject, a blank 
message opens in vi (or whatever you have your $EDITOR set to). After exiting 
the message body, type a to add an attachment, if you like. Type ? to see other ways 
of manipulating your message, headers, or attachments. Type y to send the message 
or q to abort the send. 

When you are done, type x to exit without changing your mailbox; type q to exit and 
incorporate the changes you made (messages read, deleted, and so on). 
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Summary 



Network access commands provide quick and efficient ways to get content you need 
over a network. The links web browser is a popular screen-oriented command for 
browsing the web or taking a quick look at any HTML file. Dozens of commands are 
available to download files over FTP, HTTP, SSH, or other protocols, including wget, 
curl, If tp, and scp. 

For more ongoing access to remote directories of files, this chapter covers how to 
use NFS, Samba, and SSHFS command tools. You can do IRC chats, which are popu- 
lar among open source projects, using the irssi command. For text-based e-mail 
clients, you have choices such as the mail and mutt commands. 
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13 

Doing Remote 
System Administration 



Most professional Linux administrators do not 
run a graphical interface on their Internet servers. 
As a result, when you need to access other com- 
puters for remote administration, you will almost 
surely need to work from the command line at 
some time. Luckily there are many feature-rich 
Linux commands to help you do so. 

Tools associated with the Secure Shell (SSH) serv- 
ice not only allow remote login and file transfer, 
but they also offer encrypted communication to 
keep your remote administration work secure. 
With tools such as Virtual Network Computing 
(VNC), you can have a server's remote desktop 
appear on your local client computer. These and 
other features for doing remote systems adminis- 
tration are described in this chapter. 



Doing Remote Login and 
Tunneling with SSH 



IN THIS CHAPTER 

Configuring SSH 

Using SSH for remote 
login 

Using SSH to do 
tunneling 

Using SSH to provide 
proxy service 

Using SSH with 
private keys 

Using screen remote 
multiplexing terminal 

Accessing remote 
Windows desktops 

Sharing remote Linux 
desktops with VNC 



Linux's big brother Unix grew up on university networks. At a time when 
the only users of these networks were students and professors, and with 
networks mostly isolated from each other, there was little need for security. 

Applications and protocols that were designed in those times (the 1970s 
and 1980s) reflect that lack of concern for encryption and authentication. 
SMTP is a perfect example of that. This is also true of the first generation 
of Unix remote tools: telnet, ftp (file transfer protocol), rsh (remote 
shell), rep (remote copy), rexec (remote execution), and rlogin (remote 
login). These tools send user credentials and traffic in clear text. For that 
reason, they are very dangerous to use on the public, untrusted Internet, 
and have become mostly deprecated and replaced with the Secure Shell 
(SSH) commands (ssh, scp, sf tp commands and related services). 
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Although there are still some uses for the legacy remote commands (see the "Using 
Legacy Communications Tools" sidebar), most of this section describes how to use 
SSH commands to handle most of your needs for remote communications commands. 



Using Legacy Communications Tools 

Despite the fact that SSH provides better tools for remote communications, legacy 
communications commands, sometimes referred to as r commands, are still included 
with most major Linux distributions. In openSUSE, these commands are part of the 
rsh package. Some of these tools will perform faster than equivalent SSH commands 
because they don't need to do encryption. So some old-school Unix administrators 
may use them occasionally on private networks or still include them in old scripts. 
Although for the most part you should ignore these legacy remote commands, one 
of these commands in particular can be useful in some cases: telnet. 

The telnet command is still used to communicate with some network appliances 
(routers, switches, UPSes, and so on) that do not have the horsepower to run an ssh 
daemon. Even though it poses a security risk, some appliance manufacturers include 
telnet support anyway. 

One good way to use the telnet command, however, is for troubleshooting many 
Internet protocols such as POP3, SMTP, HTTP, and others. Under the hood, these 
plain-text protocols are simply automated telnet sessions during which a client (such 
as a browser or mail user agent) exchanges text with a server. The only difference is 
the TCP port in use. Here is an example of how you could telnet to the HTTP port 
(80) of a web server: 

$ telnet www.example.com 80 

Trying 208.77.188.166... 
Connected to www.example.com. 
Escape character is IA ] ' . 
GET / HTTP/ 1.0 

Enter a second carriage return here 
HTTP/1.1 200 OK 

Similarly you can telnet to a mail server on port 25 (SMTP) and 110 (POP3) and issue 
the proper commands to troubleshoot e-mail problems. For more complete descrip- 
tions of using the telnet command to troubleshoot network protocols, refer to Linux 
Troubleshooting Bible (ISBN 076456997X, Wiley Publishing, 2004), pages 505 and 508. 

If you need to forcibly exit your telnet session, type the escape sequence (Ctrl+] by 
default). This will stop sending your keyboard input to the remote end and bring 
you to telnet's command prompt where can type quit or ? for more options. 



Configuring SSH 



Nowadays, the Swiss Army knife of remote system administration is Secure Shell (SSH). 
SSH commands and services replace all the old remote tools and add strong encryption, 
public keys, and many other features. The most common implementation of SSH in 
the Linux world is OpenSSH (www. openssh. com), maintained by the OpenBSD 
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project. OpenSSH provides both client and server components. Here are a few facts 
about SSH: 

□ For Windows, you can use the Linux SSH tools within Cygwin (www . cygwin . com). 
But unless you're already using Cygwin (a Linux-like environment for Windows), 
we recommend PuTTY (www. chiark.gr eenend. org/uk/sgatatham/putty). 
PuTTY is a powerful open source Telnet/SSH client. 

□ Use SSH version 2 whenever possible, because it is the most secure. Some SSH- 
enabled network appliances may only support older, less secure versions. OpenSSH 
supports all versions. Some older versions of Linux accepted SSH vl and v2 connec- 
tions. Newer releases accept only version 2 by default. 

□ In openSUSE, as root run service sshd start to startthe SSH service (sshd 
daemon). To configure the service, edit the /etc/ssh/sshd_conf ig file. 

□ To configure the ssh client, edit the /etc/ssh/ssh_config file. 

If you prefer to use graphical tools to administer your remote Linux system, you can 
enable Xll Tunneling (also called Xll Port Forwarding). With Xll Tunneling enabled (on 
both the SSH client and server), you can start an X application on the server and have 
it displayed on the client. All communication across that connection is encrypted. 

OpenSUSE comes with Xll forwarding turned on (xllForwarding yes) for the 
server (sshd daemon). You still need to enable it on the client side. To enable Xll for- 
warding on the client for a one-time session, connect with the following command: 

$ ssh -X f rancois@my server 

To enable Xll forwarding permanently for all users, add Forwardxil yes to /etc/ssh/ssh_ 
conf ig . To enable it permanently for a specific user only, add the line to that user's 
~ . ssh/conf ig file. Once that setting has been added, the -X option is no longer 
required to use Xll Tunneling. Run ssh to connect to the remote system as you 
would normally. To test that the tunneling is working, run xclock after ssh'ing 
into the remote machine, and it should appear on your client desktop. 

SSH Tunneling is an excellent way to securely use remote graphical tools. 

Logging in Remotely with ssh 

To securely log in to a remote host, you can use either of two different syntaxes to specify 
the user name: 

$ ssh -1 francois myserver 
$ ssh francois@myserver 

However, scp and sf tp commands (discussed in Chapter 12) only support the 
user@server syntax, so we recommend you get used to that one. If you don't specify the 
user name, ssh will attempt to log in using the same user you are logged in as locally. 
When connected, if you need to forcibly exit your ssh session, type the escape sequence of a 
tilde followed by a period (~ . ). 
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Accessing SSH on a Different Port 

For security purposes, a remote host may have its SSH service listening on a different port than 
the default port number 22. If that's the case, use -p option to ssh to contact that 
service: 

$ ssh -p 12345 francois@turbosphere.com Connect to SSH on port 12345 

Using SSH to Do Tunneling (Xll Port Forwarding) 

With SSH tunneling configured as described earlier, the SSH service forwards X 
Window System clients to your local display. However, tunneling can be used with 
other TCP-based protocols as well. 

Tunneling for Xll Clients 

The following sequence of commands illustrates starting an SSH session, then starting a few X 
applications so they appear on the local desktop: 

$ ssh francois@myserver Start ssh connection to myserver 
francois@myserver ' s password: ******* 

[francois@myserver ~}$ echo $DISPLAY Show the current X display entry 

localhost : 10 . SSH sets display to localhost : 10 . 

[francois@myserver -}$ xeyes& Show moving desktop eyes 

[francois@myserver ~}$ xterm& Launch basic X terminal 

[francois@myserver ~}$ konsole& Launch KDE terminal 

Tunneling for CUPS Printing Remote Administration 

Xll is not the only protocol that can be tunneled over SSH. You can forward any TCP port 
with SSH. This is a great way to configure secure tunnels quickly and easily. No con- 
figuration is required on the server side. 

For example, myserver is a print server with the CUPS printing service's web-based 
user interface enabled (running on port 631). That GUI is only accessible from the 
local machine. On my client PC, I tunnel to that service using ssh with the following 
options: 

$ ssh -L 1234: localhost: 631 myserver 

This example forwards port 12 34 on our client PC to localhost port 631 on the server. 
We can now browse to http: //localhost : 12 34 on the client PC. This will be redi- 
rected to cupsd listening on port 631 on the server. 

Tunneling to an Internet Service 

Another example for using SSH tunneling is when your local machine is blocked from 
connecting to the Internet, but you can get to another machine (myserver) that has an 
Internet connection. The following example lets you visit the Google web site (HTTP, 
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TCP port 80) across an SSH connection to a computer named myserver that has a 
connection to the Internet: 

$ ssh -L 1234b : google. com: 80 myserver 

With this example, any connection to the local port 12345 is directed across an SSH 
tunnel to myserver, which in turn opens a connection to Google . com port 80. You 
can now browse to http: //localhost : 12345 and use myserver as a relay to the 
Google web site. Since you're only using ssh to forward a port and not to obtain a 
shell on the server, you can add the -N option to prevent the execution of remote commands: 

$ ssh -L 12345 : google. com: 80 -N myserver 

Using SSH as a SOCKS Proxy 

The previous example demonstrates that you can forward a port from the client to a 
machine other than the server. In the real world, the best way to get your browser traffic out 
of your local network via an encrypted tunnel is using SSH's built-in SOCKS proxy feature. For 
example: 

$ ssh -D 12345 myserver 

The dynamic (-D) option of ssh lets you log in to myserver (as usual). As long as the 
connection is open, all requests directed to port 12345 are then forwarded to myserver. 
Next, set your browser of choice to use localhost port 12 3 45 as a SOCKS v5 proxy 
and you're good to go. Do not enter anything on the fields for HTTP and other proto- 
cols. They all work over SOCKS. See the Firefox Connections Settings dialog box in 
Figure 13-1. 

To test your setup, try disconnecting your ssh session and browsing to any web site. 
Your browser should give you a proxy error. 

From a Windows client, the same port forwarding can be accomplished in Putty by 
selecting Connection O SSH O Tunnels. 

Using ssh with Public Key Authentication 

Up to this point, we've only used ssh with the default password authentication. The 
ssh command also supports public key authentication. This offers several benefits: 

□ Automated logins for scripts and cron jobs — By assigning an empty passphrase, 
you can use ssh in a script to log in automatically. Although this is convenient, it 
is also dangerous, because anybody who gets to your key file can connect to any 
machine you can. Configuring for automatic login can also be done with a pass- 
phrase and a key agent. This is a compromise between convenience and security, 
as explained below. 

□ A two-factor authentication — When using a passphrase-protected key for inter- 
active logins, authentication is done using two factors (the key and the passphrase) 
instead of one. 
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Figure 13-1: Use the Firefox Connections Settings dialog 
box for proxy configuration. 



Using Public Key Logins 

Here's the process for setting up key-based communications between two Linux systems. In 
the following example, we use empty passphrases for no-password logins. If you pre- 
fer to protect your key with a passphrase, simply enter it when prompted during the 
first step (key pair creation). 

On the client system, run the following ssh-keygen command to generate the key pair 
while logged in as the user that needs to initiate communications: 

$ ssh-keygen 

Generating public /private rsa key pair. 

Enter file in which to save the key ( /home/chris/ . ssh/id_rsa) : <Enter> 

Enter passphrase (empty for no passphrase) : <Enter> 

Enter same passphrase again: <Enter> 

Your identification has been saved in /home/chris/ . ssh/id_rsa. 

Your public key has been saved in /home/chris/ . ssh/id_rsa. pub. 

The key fingerprint is: 

ac:db:a4:8e:3f :2a:90:4f :05:9f :b4 : 44 : 74 : Oe : d3 : db chris@host.domain.com 

Note that at each prompt you pressed the Enter key to create the default key file name 
and to enter (and verify) an empty passphrase. You now have a private key that you 
need to keep very safe, especially since in this procedure you didn't protect it with a 
passphrase. 
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You also now have a public key (id_rsa . pub), which was created by the previous 
command. This public key needs, to be installed on hosts you want to connect to. 
The content of -/ . ssh/id_rsa.pub needs to be copied (securely) to -/ . ssh/ 
authorized_keys2 for the user you want to ssh to on the remote server. The 
authorized_keys2 file can contain more than one public key, if multiple users 
use ssh to connect to this account. 

Log in to the remote server system as the user that you will want to ssh as with the key. 
If you don't already have a -/ . ssh directory, the first step is to create it as follows: 

$ cd 

$ mkdir . ssh 

$ chmod 700 .ssh 

The next step is to copy (securely) the public key file from the client and put it in an 
authorized keys file on the server. This can be accomplished using scp. For example, 
assuming a client system named myclient and a client user named chris, type the 
following on the server: 

$ scp chris@myclient : /home/chris/ . ssh/id rsa.pub . Get client id_rsa.pub 
$ cat id_rsa.pub >> -/ .ssh/authorized_keys2 Add to your keys 

$ chmod 600 -/ .ssh/authorized_keys2 Close permissions 

$ rm id_rsa.pub Delete public key after copying its content 

This procedure can also be accomplished by editing the -/ . ssh/authorized_keys2 
text file on the server and copy/pasting the public key from the client. Make sure 
you do so securely over ssh, and make sure not to insert any line breaks in the key. 
The entire key should fit on a single line, even if it wraps on your screen. 

Then from the client (using the client and server user accounts you just configured), 
you can just ssh to the server and the key will be used. If you set a passphrase, you 
will be asked for it as you would for a password. 

Saving Private Keys to Use from a USB Flash Drive 

If you'd like to store your private key somewhere safer than your hard drive, you can use a 
USB flash drive (sometimes called a thumbdrive or pen drive): 

$ mv ~/ .ssh/id_rsa /m&dia./THUMBDRIVEl/myprivatekey 

And then, when you want to use the key, insert the USB drive and type the following: 

$ ssh -i /media/ THUMBDRIVEl/myprivatekey chris&myserver 

Using keys with passphrases is more secure than simple passwords, but also more 
cumbersome. To make your life easier, you can use ssh- agent to store unlocked keys for 
the duration of your session. When you add an unlocked key to your running ssh- agent, 
you can run ssh using the key without being prompted for the passphrase each time. 
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To see what the ssh-agent command does, run the command with no option. A 
three-line bash script appears when you run it, as follows: 

$ ssh-agent 

SSH_AUTH_SOCK=/tmp/ssh-SkEQZ18329/agent. 18329; export SSH_AUTH_SOCK; 
SSH_AGENT_PID=18330; export SSH_AGENT_PID; 
echo Agent pid 18330; 

The first two lines of the output just shown need to be executed by your shell. Copy 
and paste those lines into your shell now. You can avoid this extra step by starting 
ssh-agent and having the bash shell evaluate its output by typing the following: 

$ eval ' ssh-agent ' 

Agent pid 18408 

You can now unlock keys and add them to your running agent. Assuming you have 
already run the ssh-keygen command to create a default key, let's add that default key 
using the ssh-add command: 

$ ssh-add 

Enter passphrase for /home/chris/ . ssh/id_rsa: ******* 

Identity added: /home/chris/ . ssh/id_rsa { /home/chris/ . ssh/id_rsa) 

Next you could add the key you stored on the USB thumbdrive: 

$ ssh-add /media/ THUMBDRIVEl/myprivatekey 

Use the -1 option to ssh-add to list the keys stored in the agent: 

$ ssh-add -1 

2 048 f7:b0:7a:5a:65:3c:cd:45:b5:lc:de:f8:26:ee:8d:78 /home/chris/ . ssh/id_rsa 

(RSA) 

2 048 f7:b0:7a:5a:65:3c:cd:45:b5:lc:de:f8:26:ee:8d:78 

/media/ THUMBDRIVEl/myprivatekey (RSA) 

To remove one key from the agent, for example the one from the USB thumbdrive, run 
ssh-add with the -d option as follows: 

$ ssh-add -d /medLia/THUMBDRIVEl/myprivatekey 

To remove all the keys stored in the agent, use the -d option: 

$ ssh-add -D 



Using screen: A Rich Remote Shell 

The ssh command gives you only one screen. If you lose that screen, you lose all you 
were doing on the remote computer. That can be very bad if you were in the middle 
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of something important, such as a 12-hour compile. And if you want to do three things 
at once, for example vi httpd.conf, tail -f error_log, and service apache2 
reload, you need to open three separate ssh sessions. 

Essentially, screen is a terminal multiplexer. If you are a system administrator working 
on remote servers, screen is a great tool for managing a remote computer with only a 
command line interface available. Besides allowing multiple shells sessions, screen 
also lets you disconnect from it, and then reconnect to that same screen session later. 

The screen software package is available with openSUSE. To install screen from over the 
Internet, type the following from the openSUSE server on which you want to use screen: 

# zypper in screen 

To use screen, run the ssh command from a client system to connect to the Linux server 
where screen is installed. Then type the following command: 

$ screen 

If you ran screen from a Terminal window, you should see the screen license message. 
After pressing Space or Return, you will see a regular bash prompt in the window. To 
control screen, press the Ctrl+a key combo, followed by another keystroke. For exam- 
ple, Ctrl+a followed by ? (noted as Ctrl+a, ?) displays the help screen. With screen 
running, here are some commands and control keys you can use to operate screen: 



$ screen -Is 

There is a screen on: 

7089.pts-2.myserver (Attached) 
1 Socket in /var/run/screen/S-francois . 
$ Ctrl+a, a 

Set window's title to: My Server 
$ Ctrl+a, c 
$ Ctrl+a, " 
Num Name Flags 

My Server 

1 bash 

$ Ctrl+a, d 

$ screen -Is 

There is a screen on: 

7089 .pts-2 .myserver (Detached) 

1 Socket in /var/run/screen/S-francois. 



List active screens 

Shows screen is attached 

Change window title 
Type a new title 
Create a new window 
Show active window titles 

Up/down arrows change windows 

Detach screen from terminal 
List active screens 

Shows screen is detached 



The screen session just shown resulted in two windows (each running a bash shell) 
being created. You can create as many as you like and name them as you choose. Also, 
instead of detaching from the screen session, you could have just closed it by exiting 
the shell in each open window (type exit or Ctrl+d). 

When the screen session is detached, you are returned to the shell that was opened 
when you first logged into the server. You can reconnect to that screen session as 
described in the following "Reconnecting to a screen Session" section. 
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Table 13-1 shows some other useful control key sequences available with screen. 



Table 13-1: Control Keys for Using screen 



Keys 


Description 


Ctrl+a, ? 


Show help screen. 


Ctrl+a, c 


Create new window. 


Ctrl+a, d 


Detach screen from terminal. The screen session and its windows keep 
running. 


Ctrl+a, " 


View list of windows. 


Ctrl+a, ' 


Prompt for number or name of window to switch to. 


Ctrl+a, n 


Go to next window. 


Ctrl+a, p 


Go to previous window 


Ctrl+a, [ 


Terminal's vertical scroll is disabled in screen. These keys turn on 
screen's scrollback mode. Press Enter twice to exit. 


Ctrl+a, 
Shift+a 


Rename current window. 


Ctrl+a, w 


Show the list of window names in the title bar. 



Reconnecting to a screen Session 

After you detach from a screen session, you can return to that screen again later 
(even after you log out and disconnect from the server). To reconnect when only one 
screen is running, type the following: 

$ screen -r 

If there are several screen sessions running, screen -r won't work. For example, 
this shows what happens when two detached screen sessions are running: 

$ screen -r 

There are several suitable screens on: 

7089 .pts-2 .myserver (Detached) 

7263 .pts-2 .myserver (Detached) 
Type "screen [-d] -r [pid. ] tty .host " to resume one of them. 
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As the output suggests, you could identify the screen session you want by its name 
(which, by default, is a combination of the session's process ID, tty name, and host- 
name). For example: 

$ screen -r 7089.pts-2 .myserver 

Naming screen Sessions 

Instead of using the default names, you can create more descriptive names for your screen 
sessions when you start screen. For example: 

$ screen -S mysession 
$ screen -Is 

There is a screen on: 

26523 .mysession (Attached) 

Sharing screen Sessions 

The screen command also allows the sharing of screens. This feature is great for tech 
support, because each person connected to the session can both type into and watch 
the current session! Creating a named screen, as in the preceding section, makes this 
easier. Then another person on a different computer can ssh to the server (using the 
same user name) and type the following: 

$ screen -x mysession 

Just as with screen -r, if there's only one screen running, you don't need to specify 
which screen you're connecting to: 

$ screen -x 



Using a Remote Windows Desktop 

Many system administrators who become comfortable using a Linux desktop prefer 
to do administration of their Windows systems from Linux whenever possible. Linux 
provides tools such as rdesktop and tsclient, which allow you to connect to a Windows 
system running Windows Terminal Services. 

To be able to connect to your Windows system desktop from Linux, you have to enable Remote 
Desktop from your Windows system. To do that from Windows XP (and others) right- 
click on My Computer and select Properties. Then choose the Remote tab from the 
System Properties window and select the Allow users to connect remotely to this com- 
puter check box. Select which users you want to let connect to the Windows box and 
click OK. 
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Now, from Linux, you can use either rdesktop or tsclient (a graphical wrapper 
around rdesktop) to connect to the Windows system using Remote Desktop Protocol 
(RDP). If those applications are not already installed, type the following from your 
Linux system: 

# zypper in tsclient 

Connecting to a Windows Desktop 
with tsclient 

If you are used to using Windows' Remote Desktop Connection (formerly known as 
Terminal Services Client) to connect from one Windows box to another, you will probably 
find the tsclient tool a good way to connect to a Windows desktop from Linux. Running 
tsclient opens a Terminal Server Client window that mimics the Windows remote 
desktop client's user interface. 

When the tsclient package is installed, launch tsclient from the SUSE menu: Applications O 
Remote Access O Terminal Server Client from the KDE desktop or by typing the follow- 
ing from the shell: 

$ tsclient & 

Figure 13-2 shows the Terminal Server Client window. 



Genera] Display Local Resources j programs Perfgrmante 


Logon Settings 

{Jm\ Type the name of the computer or choose a 
H computer from the drop-down list. 


Computer [scrverl 




Protocol: | RDPvS 




User Name: francos 


PttS&MtQfd; 




Domain: 




Oeril huMndnie. | 




Protocol File: 





| PSpen | |[JSa\M!As 



jHelp 



X Carve el *P Connect 



Figure 13-2: Terminal Server Client (tsclient) 
connects to Windows desktops. 
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Probably all you need to enter on this screen is the name or IP address of the Windows 
system. You will probably be prompted for user name and password, depending on 
how the Windows system is configured. Select different tabs to further refine your con- 
nection to the remote Windows desktop. 

Note that tsclient can also be used as a client for VNC and XDMCP. 

Connecting to a Windows Desktop 
with rdesktop 

If you prefer not to use the tclient wrapper described above, you can log in to a remote 
Windows desktop using the rdesktop command. The rdesktop command requests a login 
to the Windows machine, then opens the Windows desktop for the user after you log in. 
Here are examples of the rdesktop command: 

$ rdesktop 172.16.18.66 Login to desktop at IP address 

$ rdesktop -u chris -p M6pyXX winl Identify user/password for host winl 

$ rdesktop -f winl Run rdesktop in fuli-screen mode 

$ rdesktop -0 -r sound: local winl Direct sound from server to client 

$ rdesktop -E winl Disable client/server encryption 

If you disable client/server encryption, the login packet is encrypted, but everything 
after that is not. Although this can improve performance greatly, anyone sniffing your 
LAN would be able to see your clear-text communications (including any interactive 
logins after the initial login packet). Other rdesktop options that can improve per- 
formance or your Windows desktop include -m (don't send mouse motion events), 
-D (hide window manager's decorations), and -K (don't override window manager 
key bindings). 



Using Remote Linux Desktop 
and Applications 



The X Window System (X) should not be run on typical production servers for secu- 
rity and performance reasons. But thanks to the client-server nature of X, you can run 
an X-enabled program on a remote machine with its graphical output directed to your 
desktop. In that relationship, the application running from the remote machine is 
referred to as the X client, and your desktop is the X server. When running remote X 
applications on untrusted networks or the Internet, use SSH forwarding as described 
earlier. On trusted LANs, do it without SSH, as described here. 

By default, your X desktop will not allow remote X applications to connect (pop up) 
on your desktop. You can allow remote apps on your desktop using the xhost command. 
On your local Linux display, use the xhost command to control which remote 
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machines can connect to X and display applications on your desktop. Here are 
examples of xhost: 

$ xhost List allowed hosts 

access control enabled, only authorized clients can connect 

$ xhost + Disable access control (dangerous) 

access control disabled, clients can connect from any host 

$ xhost - Re-enable access control 

access control enabled, only authorized clients can connect 

$ xhost remotemachine Add an allowed host 

remotemachine being added to access control list 

Access control should be completely disabled only for troubleshooting purposes. How- 
ever, with access enabled for a particular host machine (remotemachine in this case), 
you can do the following from a shell on the remote computer to have X applications 
from that machine appear on the local desktop (in this case called localmachine): 

$ export DISPLAY=Iocalmachine:0 Set the DISPLAY to localmachine :0 

$ xterm & Open remote Terminal on local 

$ xclock & Open remote clock on local 

$ gtali & Open remote dice game on local 

After setting the DISPLAY variable on remotemachine to point to localmachine, any 
application run from that shell on remotemachine should appear on Desktop on local- 
machine. In this case, we started the Terminal window, clock, and game applications. 

Sharing X applications in this way between Linux and Unix hosts is pretty easy. How- 
ever, it is not trivial to use across other computer platforms. If your desktop runs 
Windows, you have to run an X server. A free solution is Cygwin, which includes an 
X server. There are also feature-rich commercial X servers, but they can be very expen- 
sive. To share remote desktops across different operating system platforms, we suggest 
you use Virtual Network Computing (VNC). 



Sharing Desktops Using VNC 

Virtual Network Computing (VNC) consists of server and client software that lets you 
assume remote control of a full desktop display from one computer on another. In openSUSE, you 
need both the tightvnc and the xorg-xll-Xvnc packages to act as a server. If you 
only need the client, the tightvnc package will suffice. 

VNC clients and servers are available for, and interoperable with, many different 
operating systems. VNC servers are available on Linux, Windows (32-bit), Mac OS X, 
and Unix systems. VNC clients are offered on those, and many other types of sys- 
tems (including OS/2, PalmOS, and even as a Java application running in a web 
browser). 
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Setting Up the VNC Server 



In openSUSE, the VNC server is run as a service from the xinetd daemon. You can 
enable or disable the VNC server through YaST, under Network Services O Remote 
Administration (VNC). You can also control VNC from the command line like any 
other xinetd service: 



# chkconfig --list vnc 
xinetd based services: 

vnc : on 

# chkconfig vnc on 

# chkconfig vnc off 

# service xinetd reload 



Display VNC server startup setting 



Set VNC server to start when xinetd loads 

Prevent VNC server from starting when xinetd loads 

Reload xinetd 



The VNC server can create one or more displays available over the network. The YaST 
approach enables VNC for display : 1, whereas the chkconfig method enables mul- 
tiple displays as defined in /etc/xinet . d/vnc. 

If you are using the iptables firewall built into your system, make sure you open the 
port(s) for VNC. This can be done when you enable VNC through YaST by selecting 
Open Port in Firewall. If you enable VNC through the command line, this needs to be 
done manually. Each display runs on its own port. Display number N is accessed on 
TCP port 5900+N. For example, display 1, which is configured by default, is accessible 
on port 5901. Refer to Chapter 14 for more details on iptables. 

When the VNC server is running and the system is at run level 5, you are ready to log 
in remotely. 

NOTE If you use a GNOME desktop, you may want to install the vino package. 
This will allow you to easily share your local desktop (display : 0). 



Starting Up the VNC Client 



With the VNC server running, you can connect to a desktop on that server from any 
of the client systems mentioned earlier (Windows, Linux, Mac OS X, Unix, and so on). 
For example, assuming your VNC server is on a system named myserver, you could 
type the following command to start that remote desktop from another Linux system: 



$ vncviewer myserver : 1 



Connect as francois on display 1 



You can also use tsclient to connect; for this example, you would just specify 
myserver : 1 as the computer and VNC as the protocol. By default, once you connect 
via VNC, you will see the same KDE login screen you would if you were working 
locally on the machine. 
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Using VNC on Untrusted Networks with SSH 

VNC is a considered to be an insecure protocol. The password is sent using fairly weak 
encryption, and the rest of the session is not encrypted at all. For that reason, when using 
VNC over an untrusted network or Internet, we recommend you tunnel it over SSH. 

For a general description of how the SSH service works, refer to the "Doing Remote 
Login and Tunneling with SSH" section earlier in this chapter. To forward VNC display 
1 (port 5901) on the computer named myserver to the same local port, type the 
following: 

$ ssh -L 5901 :localhost: 5901 myserver 



Summary 

If you ever find yourself in a position where you need to administer multiple Linux 
systems, you have a rich set of commands with Linux for doing remote system admin- 
istration. The Secure Shell (SSH) facility offers encrypted communications between 
clients and servers for remote login, tunneling, and file transfer. 

Virtual Network Computing (VNC) lets one Linux system share its desktop with a 
client system so that the remote desktop appears right on the client's desktop. VNC 
can be tunneled over SSH to provide the security it lacks. 
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14 

Locking Down Security 



Securing your Linux system means first restrict- 
ing access to the user accounts and services on 
that system. After that, security means checking 
that no one has gotten around the defenses you 
have set up. 

OpenSUSE and other Linux distributions are 
designed to be secure by default. That means that 
there are no user accounts with blank passwords, 
that the firewall is restrictive by default, and that 
most network services (Web, FTP, and so on) are 
off by default (even if their software is installed). 

Although many of the commands covered in this 
book can be used to check and improve the secu- 
rity of your Linux system, some basic Linux fea- 
tures are particularly geared toward security. For 
example, secure user accounts with good pass- 
word protection, a solid firewall, and consistent 
logging (and log monitoring) are critical to having 
a secure Linux system. Commands related to those 
features, plus some advanced features, such as 
App Armor and AIDE, are covered in this chapter. 



Working with Users 
and Groups 



IN THIS CHAPTER 

Add user accounts and 
change user settings 
with useradd 

Change user accounts 
with usermod 

Delete users with 
userdel 

Add, change, and 
manage passwords 
with passwd 

Manage groups with 
groupadd, groupmod, 
and groupdel 

See who's logged 
in with last, lastb, 
and who 

Configure firewalls 
with SUSEfirewall2 
and iptables 

Manage log files 
with logrotate and 
logwatch 



Check out advanced 
security with AppArmor, 
AIDE, and RPM 



During most Linux installation procedures, you 
are asked to assign a password to the root user 
(for system administration). Then you might be 
asked to create a user name of your choice and 

assign a password to that as well (for everyday computer use). We encour- 
age you to always log in as a regular user and only su or sudo to the root 
account when necessary. When Linux is installed, you can use commands 
or graphical tools to add more users, modify user accounts, and assign and 
change passwords. 



82928cl4.qxd:Toolbox 11/1/07 12:30 PM Pae 



252 



Chapter 14: Locking Down Security 



Managing Users the GUI Way 

With or without X, you can manage users and groups with YaST (Security and Users C 
User Management). When managing user accounts for servers, one option is to use web- 
based GUIs. The most commonly used general-purpose tool is Webmin (www.webmin 
. com). Make sure you do not run Webmin on its default port (10000) for security reasons. 
You can also use special-purpose web interfaces. For example, there are many web host- 
ing automation GUIs, such as cPanel (www . cpanel . com), Plesk (www . swsof t . com/ 
p 1 e s k), and Ensim (www . ens im . c om) . 



Adding User Accounts 



To add new users, you can use the useradd command. The only option that is required 
to add a new user is the user name you are adding. You can see some of the default 
settings for adding a new user by entering the -D option: 

# useradd -D Show useradd default values 
GROUP=100 Set group ID to 100 (users) 
H0ME=/home Set base home directory to /home 
INACTIVE=-1 Password expiration is disabled (-1) 
EXPIRE= Don't set date to disable user account 
SHELL=/bin/bash Set the default shell to /bin/bash 
SKEL=/etc/skel Copy default config files from /etc/skel to $H0ME 
CREATE_MAIL_SPOOL=yes Create a mail spool directory 

GROUPS=video, dialout Assign user to groups video and dialout 

CREATE_MAIL_SPOOL=no Do not create mail spool file 

By default, the user ID assigned to the first user created is 1000 and the group ID is 
100. The home directory is the user name appended to /home and is only created if 
you add the -m option. So, for example, if you created the first regular user account 
on the system as follows: 

# useradd -m willz 

The result would be a new user account with a willz user name (UID 10 00), member 
of the groups users, video and dialout, a home directory of /home/willz, and a 
set of configuration files copied to the home directory from /etc/skel. The account 
would remain active indefinitely (no expiration date). Add a password as follows, and in 
most cases that's all you need to do to have a working user account. 

# passwd horatio 

Changing password for user horatio. 

New UNIX password: ******** 

Retype new UNIX password: ******** 

passwd: all authentication tokens updated successfully. 

NOTE Remember to use strong, non-dictionary-based passwords. 
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There are many options you can enter to override the defaults when you create a user. 
Combine the different options as you choose. Here are some examples: 

# useradd -u 2000 -g 1000 skolmes Use specific UID and GID for user 

# useradd -d /home/jj jones Create /var/x/jj home directory 

# useradd -G support, sales timd Add user to support and sales groups 

# useradd -c "Tom G. Lotto" tlot Add user's full name to comment field 

# useradd -s /bin/tcsh joeq Assign a new default shell (tcsh) 

# useradd -e 2008-04-01 jerry Add account to expire April 01, 2008 

# useradd -f jdoe Create a disabled account 

# useradd -s /sbin/nologin billt Keep user from shelling in 

# useradd billyq Create a user without creating its home dir 

The example with -e is useful for setting an expiration date for a user that you know 
to be temporary. Change the default shell to nologin when you want a user to be 
able to access the computer (via FTP, POP3, and so on), but you don't want to allow 
access to a regular Linux login shell. Likewise, the last example might allow a user 
to access a machine, but not have a home directory. 

Before you can add a user to a group, that group must exist (see the groupadd com- 
mand in the "Adding Groups" section later in this chapter). A user must belong to 
one initial group that can be defined with -g and can also belong to supplementary 
groups, defined with -G. 

To list the group(s) that a user belongs to, use the groups command: 

$ groups francois List the groups that a user belongs to 

users dialout video 

Changing useradd Defaults 

The default values you get when you create a new user account with useradd (default 
shell, GID, expire dates, and so on) are set by values in the /etc/login. defs and /etc/ 
def ault/useradd files. You can edit those files to change defaults or run the useradd 
command with the -D option to list or selectively change values: 

# useradd -D List default settings for useradd 

# useradd -D -b /home2 -s /bin/csh Set default base dir and shell 

# useradd -D -e 2009-01-01 Set aii new users to expire in 2009 

As noted earlier, files and directories from the /etc/skel directory are copied to the 
new user's home directory when the account is created. Those files include some bash 
shell files and configuration files in the . kde directory. You can add other files and 
directories to /etc/skel so that each new user gets them. For example, if you are 
configuring a web server, you might create public_html and public_f tp directo- 
ries for users to add web pages and files they want to share. 
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Modifying User Accounts 



After a user account is created, you can change values for that account with the usermod com- 
mand. Most options are the same ones you would use with user add. For example: 

# usermod -c "Thomas Lotto" tlot Change user's name in comment field 

# usermod -s /bin/sh joeq Change default shell to sh 

# usermod -L swanson Lock the user account named swanson 

# usermod -U travis Unlock user account named travis 

Note that the last two examples lock and unlock a user account, respectively. Locking 
a user account does not remove the user's account from the system or delete any of the 
user's files and directories. However, it does keep the user from logging in. Locking 
an account can be useful if an employee is leaving the company, but the work in that 
employee's files needs to be passed to another person. Under those circumstances, lock- 
ing the user instead of deleting it prevents the files owned by that user from appearing 
as belonging to an unassigned UID. 

Because a regular user can't use the useradd or usermod command, there are special 
commands for changing personal account information. Here are examples: 

$ chsh -s /bin/sh Change current user's shell to /bin/sh 

# chsh -s /bin/sh francois Change a user's shell to /bin/sh 
$ chfn -f "Francois Caen" \ Change full name 

-o "B-205" \ Change office number 

-h 212-555-1212 \ Change home phone number 

-p 212-555-1957 Change office phone number 

$ finger francois 
Login: francois 
Directory: /home/francois 
Office: B-205, 212-555-1212 
On since Sat Aug 4 13:39 (CDT) 
No mail. 
No Plan. 

The information changed above with the chfn command and displayed with finger 
are stored in the fifth field of the /etc/password file for the selected user. (The /etc/ 
passwd file can only be edited directly by the root user, and should only be edited 
using the vipw command and extreme caution.) 





Name 


Francois Caen 




Shell 


/bin/bash 


Home 


Phone 


212- 


555-1957 


tyl 


4 set 


:onds 


idle 



Deleting User Accounts 



With the user del command, you can remove user accounts from the system, as well 
as other files (home directories, mail spool files, and so on) if you choose. Here are 
examples: 

# userdel jimbo Delete user, not user's home directory 

# userdel -r lily Delete user, home directory, and mail spool 
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Managing Passwords 



Adding or changing a password is usually done quite simply with the passwd com- 
mand. However, there are additional options available with passwd that let an adminis- 
trator manage such things as user account locking, password expiration, and warnings 
to change passwords. Besides passwd, there are commands such as chage, chf n, and 
vipw, for working with user passwords. 

Regular users can change only their own passwords, whereas the root user can change the 
password for any user. For example: 

$ passwd Change a regular user's own password 

Changing password for user chris. 
Changing password for chris. 
(current) UNIX password: ******** 
New UNIX password: * 
BAD PASSWORD: it's WAY too short 
New UNIX password: ********* 
Retype new UNIX password: ********* 
passwd: all authentication tokens updated successfully. 

# passwd Joseph Root can change any user's password 
Changing password for user Joseph. 

New UNIX password: * 

BAD PASSWORD: it's WAY too short 

Retype new UNIX password: * 

passwd: all authentication tokens updated successfully. 

In the first example, a regular user (chris) changes his own password. Even while 
logged in, the user must type the current password before entering a new one. Also, 
passwd keeps a regular user from setting a password that is too short, based on a dic- 
tionary word, doesn't have enough different characters, or is otherwise easy to guess. 
The root user, in the second example, can change any user password without the old 
password. Likewise, the root user is warned about a password that's considered inse- 
cure. However, the root user can assign a short or easy-to-guess password, despite 
those warnings. 

Passwords should be at least eight characters and a combination of letters and other 
characters (numbers, punctuation, and so on), and should not include real words. 
Make passwords easy to remember but hard to guess. 

A system administrator can use passwd to lock and unlock user accounts. For example: 

# passwd -1 carl Lock the user account (carl) 
Password changed. 

# passwd -u carl Unlock a locked user account (carl) 
Password changed. 

# passwd -u Jordan Falls to unlock account with blank password 
Cannot unlock the password for x Jordan 1 ! 
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Locking a user account with passwd causes an exclamation mark (!) to be placed at 
the front of the password field in the /etc /shadow file (where user passwords are 
stored). When a user account is unlocked, the exclamation marks are removed and 
the user's previous password is restored. 

An administrator can use the passwd command to require users to change passwords regularly, 
as well as warn users when passwords are about to expire. To use the password expiration fea- 
ture, the user account needs to have had password expiration enabled. The following 
examples use passwd to modify password expiration: 

# passwd -n 2 vern Set minimum password iife to 2 days 

# passwd -x 300 vern Set maximum password life to 300 days 

# passwd -w 10 vern Warn of password expiration 10 days in advance 

# passwd -i 14 vern Days after expiration account is disabled 

In the first example, the user must wait at least two days (-n 2) before changing to 
a new password. In the second, the user must change the password within 300 days 
(-x 3 0). In the next example, the user is warned 10 days before the password expires 
(-w 10). In the last example, the user account is disabled 14 days after the password 
expires (-i 14). 

To view password expiration, you can use the chage command as follows: 

# chage -1 vern View password expiration information 



Last password change 

Password expires 

Password inactive 

Account expires 

Minimum number of days between password change 

Maximum number of days between password change 

Number of days of warning before password expires 



Aug 04, 2007 

May 31, 2008 

Jun 14, 2008 

never 

2 

300 

10 



As system administrator, you can also use the chage command to manage password 
expiration. Besides being able to set minimum (-m), maximum (-M), and warning (-w) 
days for password expiration, chage can also set the day when a user must set a new 
password or a particular date the account becomes inactive: 

# chage -I 40 frank Make account inactive in 40 days 

# chage -d 5 perry Force user's password to expire in 5 days 

Instead of five days (-d 5), you could set that option to and cause the user to have 
to set a new password the next time he or she logs in. For example, the next time the 
user perry logged in, if -d had been set, perry would be prompted for a new pass- 
word as follows: 

login: perry 

Password: ******** 

You are required to change your password immediately (root enforced) 

Changing password for perry. 
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(current) UNIX password: 
New UNIX password: ********* 
Retype new UNIX password: ********* 

Adding Groups 

Each new user is assigned to one or more groups. You can create groups at any time 
and add users to those groups. The permissions that each group has to use files and 
directories in Linux depend on how the group permission bits are set on each item. 
Assigning users to a group allows you to attach ownership to files, directories, and 
applications so that those users can work together on a project or have common 
access to resources. 

Commands similar to those for working with users are available for managing your 
groups. You can add groups (groupadd), change group settings (groupmod), delete 
groups (groupdel), and add and delete members from those groups (groupmems). 
Here are some examples for adding new groups with the groupadd command: 

# groupadd marketing Create new group with next available GID 

# groupadd -g 701 sales Create new group with GID of 701 

# groupadd -r myadmin Create group with admin GID (under 499) 

# groupadd -o -g 74 mysshd Create group with existing GID 

With the groupmod command, you can change the name or group ID of an existing group. 
Here are examples: 

# groupmod -g 491 myadmin Modify myadmin to use GID 491 

# groupmod -n myad myadmin Change name of myadmin group to myad 

To remove an existing group, use the groupdel command. Here is an example: 

# groupdel myad Remove existing myad group 

Keep in mind that removing a group or user doesn't remove the files, directories, 
devices, or other items owned by that group or user. If you do a long listing (Is -1) 
of a file or directory assigned to a user or group that was deleted, the UID or GID of 
the deleted user or group is displayed. 



Checking on Users 



After you have created user accounts, and let those users loose on your computer, 
there are several different commands you can use to keep track of how they are using 
your computer. Commands for checking on user activity on your Linux system that 
are covered in other chapters include the following: 

□ Use the find command (see Chapter 4) to search the system for files anywhere on 
the system that are owned by selected users. 
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□ Use the du command (see Chapter 7) to see how much disk space has been used 
in selected users' home directories. 

□ Use commands such as f user, ps, and top (Chapter 9) to find out which processes 
users are running. 

Aside from the commands just mentioned, there are commands for checking such 
things as who is logged into your system and getting general information about the 
users with accounts on your system. Here are examples of commands for getting infor- 
mation about people logging in to your system: 

$ last List the most recent successful logins 

greek tty3 Sun Aug 5 18:05 still logged in 

chris ttyl Sun Aug 4 13:39 still logged in 

root pts/4 thompson Sun Aug 5 14:02 still logged in 
chris pts/1 :0.0 Sat Aug 4 15:47 still logged in 

jim pts/0 10.0.0.50 Fri Aug 3 13:46 - 15:40 (01:53) 
francois pts/2 Thu Aug 2 11:14 - 13:38 (2+02:24) 

$ last -a Makes it easier to read the remote client hostname 

# lastb List the most recent unsuccessful logins 

Julian ssh:notty ritchie Mon Aug 6 12:28 - 12:28 (00:00) 

morris ssh:notty thompson Tue Jul 31 13:08 - 13:08 (00:00) 
baboon ssh:notty 10.0.0.50 Sun Jul 8 09:40 - 09:40 (00:00) 
francois ssh:notty 000db9034dce .cli Fri Jun 22 17:23 - 17:23 (00:00) 
$ who -u List who is currently logged in (long form) 

:05 17:24 18121 

:29 . 20959 (serverl.example.com) 
:18 13:46 17982 (server2.example.com) 
:05 old 4700 (0a0d9b34x.example.com) 
:47 old 17502 (:0.0) 
$ users List who is currently logged in (short form) 

chris francois greek jim root 



greek tty3 2007-08-05 18 

jim pts/0 2007-08-06 12 

root pts/3 2007-08-04 18 

francois pts/2 2007-07-31 23 

chris pts/1 2007-08-04 15 



With the last command, you can see when each user logged in (or opened a new shell) 
and either how long they were logged in or a note that they are "still logged in." The 
ttyl and tty3 terminal lines show users working from virtual terminals on the console. 
The pts lines indicate a person opening a shell from a remote computer (thompson) or 
local X display ( : . 0). We recommend you use the -a option for improved readability. 
The lastb command shows failed login attempts and where they are from. The who 
-u and users commands show information on currently logged-in users. 

Here are some commands for finding out more about individual users on your system: 

$ id Your identity (UID, GID and group for current shell) 

uid=1001 (chris) gid=100 (users) groups=16 (dialout), 33 (video), 100 (users) 

$ who am i Your identity (user, tty, login date, location) 

chris pts/0 Aug 3 2140 (:0.0) 

$ finger -s chris User information (short) 

Login Name Tty Idle Login Time Office Office Phone 

chris Chris Negus ttyl Id Aug 4 13:39 A-lll 555-1212 

$ finger -1 chris i7ser information (long) 
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Login: chris Name: Chris Negus 

Directory: /home/chris Shell: /bin/bash 

Office: A-lll, 555-1212 Home Phone: 555-2323 

On since Sat Aug 4 13:39 (CDT) on ttyl 2 days idle 

New mail received Mon Aug 6 13:46 2007 (CDT) 

Unread since Sat Aug 4 09:32 2007 (CDT) 
No Plan. 

Besides displaying basic information about the user (login, name, home directory, 
shell, and so on), the finger command will also display any information stored in 
special files in the user's home directory. For example, the contents of the user's 
-/ .plan and -/ .project files, if those files exist, are displayed at the end of the 
finger output. With a one-line .project file and multi-line .plan file, output 
could appear as follows: 

$ finger -1 chris i7ser information (long, .project and .plan files) 

Project: 

My project is to take over the world. 

Plan: 

My grand plan is 

to take over the world 

by installing Linux on every computer 



Configuring the Built-in Firewall 



A firewall is a critical tool for keeping your computer safe from intruders over the 
Internet or other network. It can protect your computer by checking every packet of 
data that comes to your computer's network interfaces, then making a decision about 
what to do with that packet based on the parameters you set. The firewall facility built 
into the current Linux kernel is called iptables. (You may also hear of ipchains, which 
was iptables' predecessor in kernel 2.2.) 

The iptables facility (www . netf ilter . org) is extraordinarily powerful, yet complex 
to use from the command line. For that reason, many people set up their basic fire- 
wall rules using a graphical interface. OpenSUSE comes with YaST, which includes a 
Firewall GUI (under Security and Users) for configuring basic firewalls. Third-party 
open source GUIs are also available (either in RPM or source tarball form) to help you 
configure iptables: 

□ Firestarter: www. f s-security. com 

□ FWBuilder: www. fwbuilder.org 

□ Shorewall: www. shorewall .net 

When you install openSUSE, the firewall is enabled by default. The default configura- 
tion is controlled by YaST. Under the hood lies the /sbin/SuSEf irewall2 script, 
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which itself relies on two init scripts: /etc/init . d/SuSEf irewall2_init and 
/etc/init . d/SuSEf irewall2_setup. 

The default iptables configuration is a good starting point for simple server firewalling, 
which consists of opening just a few ports for running daemons and blocking the 
rest. You can customize this default configuration by editing /etc/sysconf ig/ 
SuSEf irewall2. Before doing so, we recommend you read the documentation in 

/usr /share /doc /packages /SuSEf irewal 12/. 

For more complex needs, as when iptables is used as the firewall in front of multiple 
machines, we recommend using one of the graphical tools mentioned above. How- 
ever, there are times when either you don't have a GUI available or you need a fire- 
wall rule that isn't available through a GUI. In those cases, it's useful to know the 
syntax of the iptables command to list current rules and add a new rule yourself. 

Before you start messing around with your firewall in openSUSE, you should check 
how the firewall is set up on your system. Here is how to list the current rules set on your 
Linux system's firewall: 

# iptables -L Display current iptables filter table 

Chain INPUT (policy DROP) 

target prot opt source destination 

ACCEPT all -- anywhere anywhere 

ACCEPT all -- anywhere anywhere state 

RELATED, ESTABLISHED 

input_ext all -- anywhere anywhere 

input_ext all -- anywhere anywhere 

input_ext all -- anywhere anywhere 

LOG all -- anywhere anywhere limit: avg 3/min 

burst 5 LOG level warning tcp-options ip-options prefix ' SFW2-IN-ILL-TARGET ' 

DROP all -- anywhere anywhere 



The example illustrates the default filter iptables firewall table. Next you can look at the 
nat table on a machine configured for masquerading: 

# iptables -t nat -L Display current iptables nat table 

Chain PREROUTING (policy ACCEPT) 

target prot opt source destination 

DNAT tcp -- 0.0.0.0/0 11.22.33.44 tcpdpt:8785 to : 10 . . . 155 : 22 

DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:135 

DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:135 

Chain POSTROUTING (policy ACCEPT) 

target prot opt source destination 

MASQUERADE all -- 0.0.0.0/0 0.0.0.0/0 

Chain OUTPUT (policy ACCEPT) 

target prot opt source destination 
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The nat table just shown applies to a feature called Network Address Translation. NAT 
allows you to do such things as use private addresses behind your firewall. As the pack- 
ets from internal LAN machines exit the firewall, the source private address is rewritten 
with the IP address of the firewall's external interface. The firewall keeps track of these 
sessions in order to allow the return traffic through to the LAN machines. All this is 
configured with the MASQUERADE line on the POSTROUTING chain. 

In the example above, the DNAT line in the PREROUTING chain causes any requests to 
port 8785, at IP address 11.22.33.44, to be forwarded to the internal LAN IP address 
10.0.0.155 on port 22 (a trick to let someone ssh into a computer behind the firewall 
through a non-standard port). 

Here are other examples for listing information about your firewall (the iptstate command 
can be found at www.phildev.net/iptstate/): 

# iptables -n -L Filter rules, IP numbers (no DNS lookup) 

# iptables -v -L Verbose output (with packet/byte counts) 

# iptables -L --line-numbers Show line number in chain for each rule 

# iptables -nvL --line-numbers Our Tech Editor's favorite combination 

# iptstate Show top-like listing of iptables entries 

# iptstate -tl Same thing with DNS names and totals 

On openSUSE systems, if iptables is not started you can start the firewall manually by typing 
the following: 

# SuSEf irewall2 start To start iptables now 

# SuSEf irewall2 on To set iptables to start at boot time 

Here is how you can stop or flush all iptables rules on an openSUSE system: 

# iptables -F Flush all iptables rules. Not recommended with SuSEf irewall2 

# SuSEf irewall2 stop To turn off iptables services now 

# SuSEf irewall2 off To set iptables to not start at boot time 

Now that you know how to start, stop, and list settings related to your system's iptables 
facility, you might want to see some examples of how the iptables command can be 
used to change rules on an active firewall: 

# iptables -A INPUT -p TCP \ Add filter input rule for TCP packets 

-i ethO \ on the first Ethernet interface 

--destination-port 25 \ destined for mail service port (25) 

-j ACCEPT to accept those packets when encountered 

# iptables -t nat \ Add nat rule 

-A POSTROUTING \ POSTROUTING chain 

-o ethl \ for packets received on ethl interface 

-j SNAT \ jump to network address translation 

— to-source 11.22.33.1 using outgoing address 11.22.33.1 

Of the two examples shown, the first example creates a rule that allows new incoming 
requests to your system on port 25. This is presumably because you have configured 
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your computer as a mail server (with sendmail, postfix, or other SMTP service). The 
second example creates a nat table rule to allow the firewall to do Source Network 
Address Translation (SNAT). The SNAT feature lets you have private IP addresses 
behind your firewall that can communicate to the public Internet using the firewall's 
external IP address. 

To use SNAT or any other form of NAT, you must also enable IP forwarding on the 
machine. This can be done temporarily with either of the following commands: 

# echo 1 > /proc/sys/net/ipv4/ip_forward Allow port forwarding 

# sysctl -w net.ipv4 .ip_forward=l Same as above 

In cases where you have an Internet-facing service offered on a machine behind your 
firewall, you can instruct the firewall to forward requests for that service to that machine. The 
following example uses a feature called port forwarding to pass requests for a service 
through the firewall to the destination machine behind the firewall: 

# iptables -t nat -A PREROUTING \ Add nat PREROUTING rule 

-p tcp -d 11.22.33.1 \ accepts tcp requests on 11.22.33.1 

--dport 80 \ for port 80 (Web service) 

-j DNAT \ jump to the DNAT target 

--to-destination 10.0.0.2 forward those packets to 10.0.0.2 

There are many other types of rules you can create to change how your firewall behaves. 
Refer to the iptables man page or the Netfilter web site (www.netfilter.org) for fur- 
ther information on using the iptables facility. 



Working with System Logs 



Most Linux systems are configured to log many of the activities that occur on those 
systems. Those activities are then written to log files located in the /var/log direc- 
tory or its subdirectories. This logging is done by the Syslog facility. 

OpenSUSE uses syslog-ng (next generation system log daemon) and klogd (kernel 
log daemon) to manage system logging. Those daemons are started automatically 
from the syslog init script (/etc/init . d/ syslog). Information about system activi- 
ties is then directed to files in the /var/log directory such as messages, warn, and 
mail, based on settings in the /etc/syslog-ng/syslog-ng . conf file. 

Automatic log rotation is handled by logrotate, based on settings in the /etc/ 
logrotate .conf file and /etc /logrotate . d directory. The /etc/cron. daily/ 
logrotate cronjob causes this daily log rotating to take place. 

You can check any of the log files manually (using vi or another favorite text editor). 
However, if the logwatch package is installed, highlights of your log files will auto- 
matically be mailed to your root user's mailbox every day. The logwatch package can 
be downloaded from http: / /download, opensuse. org/distribution/SL-OSS- 
f actory/inst-source/suse/noarch/. You can change both the recipient and the 
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sender address of that mail by editing the /etc/cron . daily/Ologwatch file. To 
prevent e-mail loops, you should change the sender address to a real e-mail address 
when the recipient is not on the local machine. Otherwise, just log in as root and type 
the following to read your logwatch e-mail messages: 

# mail 

>U 1 logwatchOjoe Sat Jun 16 0432 88/2536 "Logwatch for joe (Linux) " 
& 1 

Type 1 to page through the logwatch message. You will see information about 
SELinux audits, system startup, SSHD daemon, disk space in each partition, and 
login problems caught by PAM. 

You can send your own messages to the syslogd logging facility using the logger command. 
Here are a couple of examples: 

# logger Added new video card Message added to messages file 

# logger -p info -t CARD -f /tmp/my.txt Priority, tag, message file 

In the first example, the words "Added new video card" are sent to the messages file. In 
the second example, the priority of the message is set to info, and a tag of CARD is added 
to each line in the message. The message text is taken from the /tmp/my . txt file. To see 
these log entries in real time, use tail -f or less as described in Chapter 5. 



Using Advanced Security Features 

A dozen or so pages covering security-related commands are not nearly enough to 
address the depth of security tools available to you as a Linux system administrator. 
Beyond the commands covered in this chapter, here are descriptions of some features 
you may want to look into to further secure your Linux system: 

□ App Armor — The App Armor feature provides a means of securing the applica- 
tions running on your Linux system in such a way that exploitation of one appli- 
cation cannot be used to breach other areas. For example, if intruders were to 
compromise your web daemon, they wouldn't necessarily be able to compromise 
the rest of the system. 

App Armor was originally created by Immunix, and then acquired by Novell. 
App Armor is powerful and yet more simple to configure than SELinux, the com- 
peting technology developed by the U.S. National Security Agency (NSA) and 
used in the Red Hat world. App Armor can be configured either through YaST or 
via the command line utilities in the apparmor-utils package. 

□ Central logging — If you're managing more than a couple of Linux servers, it 
becomes preferable to have all your systems log to a central syslog server. Also, if 
you outgrow logwatch, you should consider using a log parser such as Splunk. 

□ File Integrity Agent (FIA) — FIAs are a family of security tools that take a snap- 
shot of all the files on your system, then later use that snapshot to find if any of 
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those files have been changed. First, you take a baseline of your system. Then at 
regular intervals, you run an integrity check to see if any of your applications or 
configuration files have been modified. The most popular FIA in the Linux world 
is Tripwire. However, Tripwire has become semi-commercial over the last few 
years. For that reason, openSUSE includes the Open Source replacement AIDE 
(Advanced Intrusion Detection Environment). You can install it through YaST or 
zypper. 

RPM database — Another way to check if any of your applications have been mod- 
ified is by using the rpm command to validate the applications and configuration 
files you have installed on your system. Using rpm -V, you can verify the size, 
MD5sum, permissions, type, and ownership of every item in an RPM package. See 
Chapter 2 for information on using rpm to verify the contents of installed RPM 
packages. 

chkrootkit — If you suspect your system has been compromised, download and 
build chkrootkit from www. chkrootkit . org. This will help you detect rootkits 
that may have been used to take over your machine. We recommend you run 
chkrootkit from a LiveCD or after mounting the suspected drive on a clean 
system. 



Summary 



Although there are many tools available for securing your Linux system, the first 
line of security starts with securing the user accounts on your system and the services 
that run on your system. Commands such as useradd, groupadd, and password are 
standard tools for setting up user and group accounts. 

Because most serious security breaches outside your organization can come from intrud- 
ers accessing your systems on public networks, setting up secure firewalls is important 
for any system connected to the Internet. The iptables facility provides the firewall fea- 
tures that are built into the Linux kernel. 

To keep track of activities on your system, the Syslog facility logs information about 
nearly every aspect of the actions that take place on your system. Packages such 
as logrotate and logwatch, make it easy to manage and do daily checks on your 
system logs. 
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Using vi or Vim Editors 



Although easy-to-use graphical text editors (such 
as gedit and kedit) are readily available with 
Linux, most power users still use vi or Emacs to 
edit text files. Besides the fact that vi and Emacs 
will work from any shell (no GUI required), they 
offer other advantages such as your hands never 
having to leave the keyboard and integration with 
useful utilities. And unlike GUI editors, text-based 
editors are usable over slow Internet connections 
such as dial-up or satellite. 



IN THIS APPENDIX 

Using the vi editor 

Starting/quitting 
the vi editor 

Moving around in vi 

Changing and 
deleting text 



Using Ex commands 
Using visual mode 



This appendix focuses on features of the vi edi- 
tor that can not only help you with basic editing, 
but also help you do some advanced text manip- 
ulation. We chose to cover vi rather than Emacs 

because vi is more universal and leaner, and also because vi keyboard 
shortcuts only require two arms. Because many Linux systems use the 
Vim (Vi IMproved) editor in place of the older vi editor, the descriptions 
in this appendix are extended to cover Vim as well. Some features in Vim 
that are not in vi include multiple undo levels, syntax highlighting, and 
online help. 

NOTE If you have never used vi or Vim before, try out the tutor that 
comes with the vim-base package. Run the vimtutor command and 
follow the instructions to step through many of the key features ofvi 
and Vim. 



Starting and Quitting the vi Editor 

If you want to experiment with using vi, you should copy a text file 
to practice on. For example, type: 



$ cp /etc/inittab /tmp 
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Then open that file using the vi command as follows: 

$ vi /tmp/inittab 

On many systems, vi is aliased to the vim command. You may want to double-check 
that using the alias command. 

Here are a few other ways you can start vi: 

$ vi +25 /tmp/inittab Begin on line 25 

$ vi + /tmp/inittab Begin editing file on the last line 

$ vi +/tty /tmp/inittab Begin on first line with word "tty" 

$ vi -r /tmp/inittab Recover file from crashed edit session 

$ view /tmp/inittab Edit file in read-only mode 

When you are done with your vi session, there are several different ways to save and 
quit. To save the file before you are ready to quit, type :w. To quit and save changes, type either ZZ 
or :wq. To quit without saving changes, type :q!. If you find that you can't write to the file you 
are editing, it may be opened in read-only mode. If that's the case, you can try forcing a 
write by typing :w! or you can save the contents of the file to a different name. For example, type 
the following to save the contents of the current file to a file named myf ile . txt: 

:w /tmp/myf ile.txt 

The vi editor also enables you to line up several files at a time to edit. For example, type: 

$ cd /tmp 

$ touch a. txt b.txt c.txt 

$ vi a . txt b . txt c . txt 

In this example, vi will open the a . txt file first. You can move to the next file by typing 
:n. You may want to save changes before moving to the next file (:w) or save changes as you move 
to the next file (:wn). To abandon changes while moving to the next file, type :n!. 

You will probably find it easier to open multiple files by splitting your vi screen. When 
you're in vi and have a file open, you can split your screen multiple times either horizontally 
or vertically: 

: split /etc/httpd/conf /httpd.conf 
:vsplit /etc/init .d/httpd 

Use <Tab> to complete the path to the files, just like you would in a bash shell. To navi- 
gate between split windows, press Ctrl+w, followed by the w key. To close the current win- 
dow, use the usual vi exit command ( : q). 
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Moving Around in vi 



The first thing to get used to with vi is that you can't just start typing. Vi has multiple 
modes that enable you to perform a different set of tasks. You start a vi session in 
Normal mode, where vi is waiting for you to type a command to get started. While 
you are in Normal mode, you can move around the file, to position where you want 
to be in the file. To enter or modify text, you need to go into Insert or Replace modes. 

Assuming vi is open with a file that contains several pages of text, Table A-l shows 
some keys and combinations you can type to move around the file while in normal mode. 



Table A-l: Keystroke Commands for Moving Around 



Key 


Result 


Key 


Result 


PageDown 
or Ctrl+f 


Move down one page 


PageUp 
or Ctrl+b 


Move up one page 


Ctrl+d 


Move down half page 


Ctrl+u 


Move up half page 


Shift+g 


Go to last line of file 


:1 


Go to first line of file 
(use any number to go 
to that line) 


Shift+h 


Move cursor to screen top 


Shift+1 


Move cursor to screen 
bottom 


Shift+m 


Move cursor to middle of 
screen 


Ctrl+1 


Redraw screen (if garbled) 


Enter 


Move cursor to beginning 
of the next line 


- 


Move cursor to beginning 
of the previous line 


Home or $ 


Move cursor to end 
of line 


End or A or 


Move cursor to line 
beginning 


( 


Move cursor to beginning 
of previous sentence 


) 


Move cursor to beginning 
of next sentence 


1 


Move cursor to beginning 
of previous paragraph 


) Move cursor to beginning 
of next paragraph 


w 


Move cursor to next 
word (space, new line, 
or punctuation) 


Shift+w 


Move cursor to next word 
(space or new line) 



Continued 
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Table A-l: Keystroke Commands for Moving Around {continued) 



Key 


Result 


Key 


Result 


b 


Move cursor to previous 
word (space, new line, or 
punctuation) 


Shift+b 


Move cursor to previous 
word (space or new line) 


e 


Move cursor to end of 
next word (space, new 
line, or punctuation) 


Shift+e 


Move cursor to end of next 
word (space or new line) 


Left arrow 
or Backspace 


Move cursor left one letter 


Right arrow 
or 1 


Move cursor right one 
letter 


k or up arrow 


Move cursor up one line 


j or 

down arrow 


Move cursor down one line 


/string 


Find next occurrence of 

string 


Istring 


Find previous occurrence 
of string 


n 


Find same string again 
(forward) 


Shift+n 


Find same string again 
(backwards) 



Changing and Deleting Text in vi 



To begin changing or adding to text with vi, you can enter Insert or Replace modes, as 
shown in Table A-2. When you enter Insert or Replace mode, the characters you type 
will appear in the text document (as opposed to being interpreted as commands). 

Press the Esc key to exit to normal mode after you are done inserting or replacing text. 



Table A-2: Commands for Changing Text 



Key 


Result 


Key 


Result 


i 


Typed text appears before 
current character 


Shift+i 


Typed text appears at the 
beginning of current line 


a 


Typed text appears after 
current character 


Shift+a 


Typed text appears at the 
end of current line 
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Table A-2: Commands for Changing Text (continued) 



Key 


Result 


Key 


Result 





Open a new line below 
current line to begin typing 


Shift+o 


Open a new line above 
current line to begin 
typing 


s 


Erase current character 
and replace with new text 


Shift+s 


Erase current line and 
enter new text 


c? 


Replace ? with 1, w, $, or c 
to change the current letter, 
word, end of line, or line 


Shift+c 


Erase from cursor to 
end of line and enter 
new text 


r 


Replace current character 
with the next one you type 


Shift+r 


Overwrite as you type 
from current character 
going forward 



Table A-3 contains keys you type to delete or paste text. 



Table A-3: Commands for Deleting and Pasting Text 



Key 


Result 


Key 


Result 


X 


Delete text under cursor 


Shift+x 


Delete text to left of 
cursor 


d? 


Replace ? with 1, w, $, or d 
to cut the current letter, 
word, or end of line from 
cursor or entire line 


Shift+d 


Cut from cursor to end 
of line 


y? 


Replace ? with 1, w, or $ to 
copy (yank) the current 
letter, word, or end of line 
from cursor 


Shift+y 


Yank current line 


p 


Paste cut or yanked text 
after cursor 


Shift+p 


Paste cut or yanked text 
before cursor 



Using Miscellaneous Commands 

Table A-4 shows a few miscellaneous, but important, commands you should know. 
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Table A-4: Miscellaneous Commands 



Key 



Result 



Shift+j 

Esc 



Type u to undo the previous change. Multiple u commands will step back 
to undo multiple changes. 

Typing a period (.) will repeat the previous command. So, if you deleted a 
line, replaced a word, changed four letters, and so on, the same command 
will be done wherever the cursor is currently located. (Entering input mode 
again resets it.) 

Join the current line with the next line. 

If you didn't catch this earlier, the Esc key returns you from an input mode 
back to command mode. This is one of the keys you will use most often. 



Modifying Commands with Numbers 

Nearly every command described so far can be modified with a number. In other 
words, instead of deleting a word, replacing a letter, or changing a line, you can delete 
six words, replace 12 letters, and change nine lines. Table A-5 shows some examples. 



Table A-5: Modifying Commands with Numbers 



Command 


Result 


7cw 


Erase the next seven words and replace them with text you type 


5, Shift+d 


Cut the next five lines (including the current line) 


3p 


Paste the previously deleted text three times after the current cursor 


9db 


Cut the nine words before the current cursor 


10j 


Move the cursor down ten lines 


y2) 


Copy (yank) text from cursor to end of next two sentences 


5, Ctrl+f 


Move forward five pages 


6, Shift+j 


Join the next six lines 



From these examples, you can see that most vi keystrokes for changing text, deleting 
text, or moving around in the file can be modified using numbers. 
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Using Ex Commands 



The vi editor was originally built on an editor called Ex. Some of the vi commands 
you've seen so far start with a semicolon and are known as Ex commands. To enter 
Ex commands, start from normal mode and type a colon ( : ). This switches you to 
command line mode. In this mode, you can use the Tab key to complete your com- 
mand or file name, and the arrow keys to navigate your command history, as you 
would in a bash shell. When you press Enter at the end of your command, you are 
returned to normal mode. 

Table A-6 shows some examples of Ex commands. 



Table A-6: Ex Command Examples 



Command 


Result 


: !bash 


Escape to a bash shell. When you are done, type exit to 
return to vi. 


: !date 


Run date (or any command you choose). Press Enter to 
return. 


: ! ! Rerun the command previously run. 


:20 


Go to line 20 in the file. 


: 5 , lOw abc . txt 


Write lines 5 through 10 to the file abc .txt. 


: e abc . txt 


Leave the current file and begin editing the file abc . txt. 


: . r def . txt 


Read the contents of def . txt into the file below the 
current line. 


:s/RH/RedHat 


Substitute Red Hat for the first occurrence of RH on 
the current line. 


:s/RH/Red Hat/g 


Substitute Red Hat for all occurrences of RH on the 
current line. 


:%s/RH/Red Hat/g 


Substitute Red Hat for the all occurrences of RH in the 
entire file. 


:g/Red Hat/p 


List every line in the file that contains the string " Red Hat " . 


:g/gaim/s/ / pidgin /gp 


Find every instance of gaim and change it to pidgin. 



From the ex prompt you can also see and change settings related to your vi session 
using the set command. Table A-7 shows some examples. 
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Table A-7: set Commands in ex Mode 




Command 


Result 




: set all 


List all settings. 




: set 


List only those settings that have changed from the default. 




:set number 


Have line numbers appear left of each line. (Use set nonu to unset.) 




:set ai 


Sets autoindent, so opening a new line follows the previous indent. 




:set ic 


Sets ignore case, so text searches will match regardless of case. 




:set list 


Show $ for end of lines and A I for tabs. 




: set wm 


Causes vi to add line breaks between words near the end of a line. 



Working in Visual Mode 



The Vim editor provides a more intuitive means of selecting text called visual mode. To 
begin visual mode, move the cursor to the first character of the text you want to select 
and press the v key. You will see that you are in visual mode because the following text 
appears at the bottom of the screen: 



At this point, you can use any of your cursor movement keys (arrow keys, Page Down, 
End, and so on) to move the cursor to the end of the text you want to select. As the page 
and cursor move, you will see text being highlighted. When all the text you want to 
select is highlighted, you can press keys to act on that text. For example, d deletes the 
text, c lets you change the selected text, :w /tmp/test . txt saves selected text to a file, 
and so on. 
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Shell Special Characters 
and Variables 



SUSE provides bash as the default shell. Chapter 3 
helps you become comfortable working in the 
shell. This appendix provides a reference of the 
numerous characters and variables that have spe- 
cial meaning to the bash shell. Many of those ele- 
ments are referenced in Table B-l (Shell Special 
Characters) and Table B-2 (Shell Variables). 



IN THIS APPENDIX 

Using special shell 
characters 

Using shell variables 



Using Special Shell Characters 

You can use special characters from the shell to match multiple files, save 
some keystrokes, or perform special operations. Table B-l shows some 
shell special characters you may find useful. 



Table B-l: Shell Special Characters 



Character 


Description 


* 


Match any string of characters. 


? 


Match any one character. 


[ ... ] Match any character enclosed in the braces. 


1 ... ' Remove special meaning of characters between quotes. 
Variables are not expanded. 


" ... " Same as simple quotes except for the escape characters 
($ ' and \ ) that preserve their special meaning. 


\ 


Escape character to remove the special meaning of the 
character that follows. 



Continued 
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Table B-l: Shell Special Characters (continuett) 




Character 


Description 




~ 


Refers to the $H0ME directory. 




~+ 


Value of the shell variable PWD (working directory). 




— 


Refers to the previous working directory. 




Refers to the current working directory. 




. . Refers to the directory above the current directory. Can be used 
repeatedly to reference several directories up. 




$ par am 


Used to expand a shell variable parameter. 




cmdl N cmd2^ 
or 

cmdl $ (cmd2) 


cmd2 is executed first. Then the call to cmd2 is substituted with the 
output of 011162, and cmdl is executed. 




cmdl > 


Redirects standard output from command. 




cmdl < 


Redirects standard input to command. 




cmdl » 


Appends standard output to file from command, without erasing its 
current contents. 




cmdl | cmd2 


Pipes the output of one command to the input of the next. 




cmd & 


Runs the command in the background. 




cmdl && cmd2 


Runs first command, then if it returns a zero exit status, runs the 
second command. 




cmdl | | cmd2 


Runs first command, then if it returns a non-zero exit status, runs 
the second command. 




cmdl ; cmd2 


Runs the first command and when it completes, runs the second 
command. 



Using Shell Variables 



You identify a string of characters as a parameter (variable) by placing a $ in front of 
it (as in $H0ME). Shell environment variables can hold information that is used by the 
shell itself, as well as by commands you run from the shell. Not all environment vari- 
ables will be populated by default. Some of these variables you can change (such as the 
default printer in $PRINTER or your command prompt in $PS1). Others are managed 
by the shell (such as $0LDPWD). Table B-2 contains a list of many useful shell variables. 
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Table B-2: Shell Variables 



Shell Variable 


Description 


BASH 


Shows path name of the bash command ( /bin/bash). 


BASH_COMMAND 


The command that is heing executed at the moment. 


BASH_VERSION 


The version number of the bash command. 


COLORS 


Path to the configuration file for Is colors. 


COLUMNS 


The width of the terminal line (in characters). 


DISPLAY 


Identifies the X display where commands launched from the 
current shell will be displayed (such as : . 0). 


EUID 


Effective user ID number of the current user. It is based on the user 
entry in /etc /passwd for the user that is logged in. 


FCEDIT 


Determines the text editor used by the f c command to edit 
history commands. The vi command is used by default. 


GROUPS 


Lists groups of which the current user is a member. 


HISTCMD 


Shows the current command's history number. 


HISTFILE 


Shows the location of your history file (usually located at 

$HOME/ .bash_hi story). 


HISTFILESIZE 


Total number of history entries that will be stored (default, 1000). 
Older commands are discarded after this number is reached. 


HISTCMD 


The number of the current command in the history list. 


HOME 


Location of the current user's home directory. Typing the cd com- 
mand with no options returns the shell to the home directory. 


HOSTNAME 


The current machine's host name. 


HOSTTYPE 


Contains the computer architecture on which the Linux system is 
running (i386, i486, i586, i686, x86_64, ppc, or ppc64). 


LESSOPEN 


Set to a command that converts content other than plain text 
(images, RPMs, zip files, and so on) so it can be piped through the 
less command. 


LINES 


Sets the number of lines in the current terminal 



Continued 
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Table B-2: Shell Variables (continued) 



Shell Variable 


Description 


LOGNAME 


Holds the name of the current user. 


LS_COLORS 


Maps colors to file extensions to indicate the colors the 1 s com- 
mand displays when encountering those file types. 


MACHTYPE 


Displays information about the machine architecture, company, and 
operating system (such as i686-redhat-linux-gnu) 


MAIL 


Indicates the location of your mailbox file (typically the user name 
in the /var/spool/mail directory). 


MAILCHECK 


Checks for mail in the number of seconds specified (default is 60). 


OLDPWD 


Directory that was the working directory before changing to the 
current working directory. 


OSTYPE 


Name identifying the current operating system (such as linux or 
linux-gnu) 


PATH 


Colon-separated list of directories used to locate commands that you 
type (/bin, /usr /bin, and $HOME/bin are usually in the PATH). 


PPID 


Process ID of the command that started the current shell. 


PRINTER 


Sets the default printer, which is used by printing commands such 
as lpr and lpq. 


PROMPT^COMMAND 


Set to a command name to run that command each time before your 
shell prompt is displayed. (For example, PROMPT_COMMAND=ls 
lists commands in the current directory before showing the prompt). 


PS1 


Sets the shell prompt. Items in the prompt can include date, time, 
user name, hostname, and others. Additional prompts can be set 
with PS2, PS3, and so on. 


PWD 


The directory assigned as your current directory. 


RANDOM 


Accessing this variable generates a random number between and 

32767. 


SECONDS 


The number of seconds since the shell was started. 


SHELL 


Contains the full path to the current shell. 


SHELLOPTS 


Lists enabled shell options (those set to on) 
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Getting Information 
from /proc 



Originally intended to be a location for storing 
information used by running processes, the /proc 
file system eventually became the primary location 
for storing all kinds of information used by the 
Linux kernel. Despite the emergence of / sys to 
provide a more orderly framework for kernel infor- 
mation, many Linux utilities still gather and pres- 
ent data about your running system from /proc. 



IN THIS APPENDIX 

Viewing /proc 
information 

Changing /proc 
information variables 



If you are someone who prefers to cut out the middleman, you can bypass 
utilities that read /proc files and read (and sometimes even write to) /proc 
files directly. By checking /proc, you can find out the state of processes, 
hardware devices, kernel subsystems, and other attributes of Linux. 



Viewing /proc information 



Checking out information in files from the /proc directory can be done 
by using a simple cat command. In /proc, there is a separate directory 
for each running process (named by its process ID) that contains informa- 
tion about the process. There are also /proc files that contain data for all 
kinds of other things, such as your computer's CPU, memory usage, soft- 
ware versions, disk partitions, and so on. 

The following examples describe some of the information you can get 
from your Linux system's /proc directory: 



$ cat /proc/cmdline Shows options passed to the boot prompt 

root = /dev/disk/by-id/scsi-SATA_FUJITSU_MPG3409_VH06T190RV9W-part2 
resume=/dev/sda5 splash=silent showopts 
$ cat /proc/cpuinfo Shows information about your processor 



Processor 
vendor_id 
cpu family 
model 
model name 





Genuinelntel 

6 

8 

Pentium III (Coppermine) 
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stepping : 3 




cpu MHz 


: 648.045 


cache size 


: 256 KB 



In the example above, the MHz speed may be well below your actual system speed if 
a CPU governor such as cpuspeed is running. 

$ cat /proc /devices Shows existing character and block devices 

Character devices : 
1 mem 

4 /dev/vc/0 
4 tty 

4 ttys 

5 /dev/tty 

Block devices: 
1 ramdisk 

7 loop 

8 sd 

9 md 

$ cat /proc/diskstats Display disks, partitions, and statistics 
1 ramO 00000000000 
1 1 rami 00000000000 

8 sda 2228445 1032474 68692149 21672710 1098740 4003143 
47790770 101074392 15385988 122799055 

8 1 sdal 330077 13060510 188002 8443280 
8 1 sda2 1491 1759 50 162 

7 loopO 00000000000 

In the diskstats output just shown, you can see ramdisk (ramO, rami, and so on) 
and loopback devices (loopO, loopl, and so on). For hard disk partitions, the example 
shows statistics for the whole hard disk (sda) and each partition (sdal, sda2, and so on). 

The 11 fields for the entire hard disk show (from left to right): total number of reads, 
number of reads merged, number of sectors read, number of milliseconds spent by all 
reads, number of writes completed, number of writes merged, number of sectors writ- 
ten, number of milliseconds spent writing, number of input/output requests currently 
in progress, number of milliseconds spent doing input /output, and weighted number 
of milliseconds spend doing input/output. Fields for a particular partition show (from 
left to right): number of reads issued, number of sectors read, number of writes issued, 
and number of sectors written. 

$ cat /proc/f ilesystems List filesystem types supported by current kernel 

nodev sysfs nodev means type is not currently used by any device 

nodev rootfs 

ext3 ext3 is used on a mounted block device 

iso9660 iso9660 is used on a mounted block device 
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$ cat /proc/interrupts 



View IRQ channel assignments 





CPUO 









198380901 


XT-PIC-XT 


timer 


1 


28189 


XT-PIC-XT 


i8042 


2 





XT-PIC-XT 


cascade 


6 


3770197 


XT-PIC-XT 


Ensoniq AudioPCI 


7 


660 


XT-PIC-XT 


parportO 



$ cat /proc/iomem 

00000000-0009fbff : 
00000000-00000000 
0009fc00-0009ffff 
OOOaOOOO-OOObffff 
000c0000-000c7fff 
000c8000-000c8fff 
OOOfOOOO-OOOfffff 
00100000-Ofebffff 



Show physical memory addresses 
System RAM 
: Crash kernel 
reserved 
Video RAM area 
Video ROM 
Adapter ROM 
System ROM 
System RAM 



$ cat /proc/ioports 



Show virtual memory addresses 



0000- 


-OOlf 


dmal 


0020 


-0021 


picl 


0040 


-0043 


timerO 


0050 


-0053 


timerl 


0060 


-006f 


keyboard 


0070 


-0077 


rtc 


0080 


-008f 


dma page reg 


OOaO 


-OOal 


pic2 


OOcO 


-OOdf 


dma 2 


OOfO 


-OOff 


fpu 



$ cat /proc/keys 

00000001 I 

00000002 I 

0442d29e I-Q- 



Displays a list of keys being kept by kernel 

1 perm If 3f 0000 keyring _uid_ses.0: 1/4 
7 perm If 3f 0000 keyring _uid.0: empty 

2 perm If3f0000 keyring _ses . 20729: 1/4 



$ cat /proc/loadavg 

1.77 0.56 0.19 2/247 1869 
$ cat /proc/meminfo 



MemTotal ; 

MemFree : 

Buffers : 

Cached: 

SwapCached: 

Active: 

Inactive: 

HighTotal: 

HighFree: 

LowTotal : 



482992 kB 

25616 kB 

12204 kB 

64132 kB 

117472 kB 

321344 kB 

93168 kB 

kB 

kB 

482992 kB 



Shows 1, 5, and 15 minute load averages, 

running processes/total and highest PID 
Shows available RAM and swap 



$ cat /proc/misc 

229 fuse 

63 device-mapper 
17 5 agpgart 



Shows name/minor number of devices 

registered with misc major device (10) 
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144 nvram 

$ cat /proc/modules Shows loaded modules, memory size, 

nls_utf8 6209 1 - Live 0xd0c59000 instances loaded, dependencies 

cifs 213301 - Live 0xd0e3b000 load state, and kernel memory 

nfs 226861 - Live 0xd0e02000 

nfsd 208689 17 - Live 0xd0d8a000 

exportfs 9537 1 nfsd, Live OxdOcfbOOO 

lockd 62409 3 nfs, nfsd, Live 0xd0d45000 

nfs_acl 7617 2 nfs, nfsd, Live 0xd0c56000 

fuse 45909 2 - Live 0xd0d24000 

vfat 16193 - Live 0xd0cf6000 

$ cat /proc/mounts Show mounted local/remote file system info 

rootfs / rootfs rw 

udev /dev tmpfs rw 

/dev/sda2 / ext3 rw, data=ordered 

proc /proc proc rw 

sysfs /sys sysfs rw 

debugfs /sys/kernel/debug debugfs rw 

devpts /dev/pts devpts rw 

securityfs /sys/kernel/security securityfs rw 

$ cat /proc/partitions Show mounted local disk partitions 

major minor tblocks name 

8 40031712 sda 

8 1 200781 sdal 

8 2 10241437 sda2 

8 3 6160927 sda3 

7 682998 loopO 

$ cat /proc/mdstat If using software RAID, show RAID status 
Personalities : [raidl] 
read_ahead 1024 sectors 
Event : 1 

mdO : active raidl sdbl[l] sda2[0] 
69738048 blocks [2/2] [UU] 

unused devices: <none> 

The /proc/mdstat file contains detailed status information on your software RAID 
devices. In this example, mdO is a RAID1 (mirror) composed of the /dev/sdbl and 
/dev/ sdal partitions. On the following line, there is one U for each healthy RAID 
member. If you lose a drive, the output would appear as [U_] . 

$ cat /proc/stat Shows kernel stats since system boot 

cpu 1559592 1488475 710279 218584583 1446866 5486 16708 

cpuO 1559592 1488475 710279 218584583 1446866 5486 16708 

intr 215956694 200097282 28242 13 3770197 660 1 1 3753340 ... 

ctxt 281917622 
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btime 1181950070 
processes 519308 
procs_running 1 
procs_blocked 

The /proc/stat file contains statistics related to CPU and process activities. The 
cpu line shows totals for all CPUs, while separate lines for each processor (cpuO, 
cpul, and so on) show stats for each CPU on the computer. There are seven fields 
(from left to right) of CPU information: number of normal processes executed in user 
mode, niced processes executed in user mode, kernel mode processes, idle processes, 
iowait processes (waiting for input/output to finish), servicing interrupts (IRQ), and 
servicing soft IRQs. 

$ cat /proc/swaps List information about swap space 

Filename Type Size Used Priority 

/dev/sda2 partition 1020088 201124 -1 

$ cat /proc/uptime Seconds since system booted/total seconds idle 

2300251.03 2261855.31 

$ cat /proc/version List kernel version and related compiler 

Linux version 2 . 6 . 22 . 5-23-default (geeko@buildhost) (gcc version 4.2.1 

SUSE Linux)) #1 SMP 2007/09/18 05:23:45 UTC 



Changing /proc information 



Some values in the /proc/sys directory can actually be changed on the fly. For 
/proc/sys files that accept binary values (0 disabled or 1 enabled) people would 
often simply echo a value to any files they wanted to change. For example, to allow 
forwarding of IPv4 packets, such as to allow a system to do Network Address 
Translation (NAT) or IP Masquerading, you could type: 

# echo 1 > /proc/sys /net /ipv4/ip_forward 

Although you could still use this technique to make temporary changes to your sys- 
tem, the preferred method of changing /proc/sys information on the fly is using the 
sysctl command. To change those settings on a more permanent basis, you should 
add entries to the /etc/sysctl . conf file. Here are some examples of the sysctl 
command: 

# sysctl -A | less Display all kernel runtime parameters 

# sysctl -w net . ipv4 . ip_f orward=l Turn on IPv4 packet forwarding 

See Chapter 10 as well as the sysctl and sysctl .conf man pages for further 
information. 
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Add-On Product 

YaST Control Center, 22 
addrepo command 

new repository, adding, 24 
Address Resolution Protocol (ARP), 209-210 

delete entry from cache, 209-210 

disable name resolution, 209 

entries, listing, 209 

functions of, 209 

static entries, adding to cache, 210 
address/ status 

Ethernet cards, 200-201 
Ad-Hoc mode, wireless connections, 203 
Advanced Linux Sound Architecture (ALSA), 99 
affs file system, 113 
AIFF files 

encoded to WAV, 102 

encoding to FLAC, 102 

playing, 98 

WAV files encoded to, 102 
alias(es) 

define for bash session, 49 

removing from bash session, 49 

setting/listing, 49 
alias command 

defining alias for shell, 49 

listing aliases, 49 

setting alias, 49 
alphanumeric order, sort based on, 91 
alsamixer command, audio levels, 

adjusting, 99 
anacron facility, 171 
AppArmor, 263 
append to file, shell, 46 
apropos command, man pages, searching, 

7-8 
archives 

compress output, 141-144 

concatenate files, 144 

creating, 139-141 

files, adding to, 144 

files, deleting from, 145 



listing contents, 144 

match multiple files to add, 144 

tar command, 139-141 

See also backups 
arp command 

ARP cache, delete entry, 209-210 

ARP entries, viewing, 209 

name resolution, disabling, 209 

static entries, adding to cache, 210 
arping command, IP query use of, 210 
arrow keys, for scrolling, 44, 88 
ASCII text, readable, extracting, 91 
aspell package, 81 
at command, processes, scheduling 

runs, 169 
Atheros 

chipset, repository for, 28 

wireless tools, 202 
atq command, processes, checking run 

queue, 170 
atrm command, processes, delete from run 

queue, 170 
attachments, e-mail, 233 
audio, 97-106 

ALSA, default sound system, 99 

capture channel, assigning, 99 

CDs, ripping music, 100 

concatenating WAV files, 105 

display settings, changing, 99 

effects, viewing, 98 

encoding music, 101-103 

file information, displaying, 105 

mixing WAV files, 105 

music, playing, 98-99 

music players, types of, 97 

mute/unmute, 99 

OSS modules, viewing, 99 

playlists, creating, 99 

seconds of sound, deleting, 106 

streaming music server, set-up, 103-105 

volume, adjusting, 99-100 
aumix command, audio display settings, 
changing, 99 
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Automatic Online Update 

YaST Control Center, 22 
auto-negotiation, disabling/ re-enabling, 

197-198 
AutoYaST, 14 
awk command 

columns of text, extracting, 95 

delimiter, changing, 95 



B 



background, running processes in, 166-167 
backticks, 47 
backups, 139-154 

to CDs/DVDs. See CD backups; DVD backups 

compressed, making, 70 

compression tools, 141-144 

networks. See Network backups 

See also archives 
badblocks command 

bad blocks, scanning for, 128 

destructive read-write test, 128 

multiple passes, 128 

ongoing progress, viewing, 128 

warning, 128 
BASH, 275 
bash (Bourne Again Shell), 41, 44 

See also shell 
BASH_COMMAND, 275 
BASH_VERSION, 275 
batch command, processes, scheduling 

runs, 170 
befs file system, 113 
bg command, running processes, in 

background, 166 
BIOS, boot process, 186 
bit bucket file, direct output to, 46 
BitchX, 230 
block(s) 

bad, scan for, 128 

bytes, number of, 69 
block devices, 62 

bookmarks, FTP server location, 220 
boot 

initial ramdisk, repairing, 187-188 

installation options, 14-15 

loader. See Grand Unified Boot Loader (GRUB) 

process, steps in, 186-187 
boot image 

copying, 70 

mini.iso image, downloading, 12 

mounting, 126 
bottlenecks 

networks, 210-211 

system, checking for, 180 



bouncers, 230 

Bourne Again Shell (bash), 41, 44 
See also shell 

browser. See links browser 

BSD/OS file system, 115 

bytes 
blocks, number in, 69 
text files, printing number in, 90 

bzip2 command, compression with, 143 



cal command, calendar, displaying, 183 

calendar, displaying, 183 

card command, help message, format 

output, 7 
case command, case test, 57 
case sensitivity 

find command, 73 

locate command, 72 

search, ignore case, 90 
cat command 

ASCII text, extracting, 91 

one file, verifying, 77 

proc information, viewing, 179, 
277-281 

text, replacing, 91 

text file content, displaying, 93 

text file format, converting, 96 

text files, listing, 87 
CD(s) 

backups. See CD backups 

capacities, 152-153 

GUI tools for, 149 

images, mounting in loopback, 126 

ISO image, copying to, 12 

media check tool, 22 

music, ripping, 100 

SUSE, sources for, 3 

SUSE installation, 12-13 

unmount/ eject CDs, 127 

volume ID, importance of, 151 
CD backups, 150-152 

burn multi-session CDs, 153 

drive support, checking, 153 

ISO image, creating, 150-152, 153 
cd command, change directory, 67 
cdparanoia command 

CDDA capability, verifying, 100 

CDs, ripping music, 100 
cdrecord command 

burn multi-session CDs/DVDs, 153 

CD/DVD burning capability, checking, 153 

CDs, burning images to, 152-153 
cdrkit project, 150 
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CDs 

SUSE, sources for, 11-12 
chage command, password expiration 

operations, 256 
channels 

audio, adjusting, 99-100 

chat rooms, 231 
character(s) 

case, changing, 92-93 

deleting, 93 

range of, specifying, 93 

replacing, 92 
character devices, 62 
chatting. See Internet Relay Chat (IRC) 
chattr command, file attributes, changing, 71 
checksum of files, producing, 76-77 
chgrp command, directory ownership, 

changing, 66 
chkrootkit tool, downloading, 264 
chmod command 

locking on file, 121 

permissions, changing, 64-66 

permissions, locking, 121 

shell scripts, executable, 54, 214 

swap area, creating within file, 121 
chown command, directory ownership, 

changing, 66 
chsh command, user account information, 

changing, 254 
cifs file system, 113 
clockdif f command, local/remote clocks, 

checking, 185 
color 

files, comparing, 94 

images, colorizing, 108 

search terms, 90 
COLORS, 275 
COLUMNS, 275 
columns 

delimiter between, changing, 95 

printing, 95-96 

range of fields, actions on, 95 

running processes lists, 159-161 

single list, conversion to two columns, 89 

text, extracting, 95 
COM1 

connect to Cisco device, 206 

settings, viewing, 205 
command(s) 

bash history operations, 44-45 

commands for finding commands, 6 

as executable files, 60 

finding. See command reference 

help messages, displaying for, 163 

info documents for, 9 



installing from GUI, 6 

installing from shell, 6 

no such file or directory, reasons 
for, 5 

scheduling runs, 169-171 

search for, 163-165 

standard input, directing to, 47 

See also individual commands 
command files, types of, 59 
command line 

backticks, executing sections of, 47 

completion with bash, 45 

for downloading file from remote server, 
216-217 

as preferred interface, 4 

web browser, 215 
command line prompt 

changing, 5 

default prompt (>), 5 

for root user (#), 5 
command reference, 6-9 

help messages, 7 

info documents, 9 

man pages, 7-9 
Common Internet File System (CIFS), 225 

See also Samba 
Community Repositories 

YaST Control Center, 22 
Compact Disc Digital Audio (CDDA), 100 
compression, 141-144 

all files in directory, 143 

benefits of, 141 

bzip2 command, highest compression, 143 

compressed backup, making, 70 

gzip command, 142-143 

gzipped files, uncompress, 143 

lzop command, 143-144 

tar command, 140-141 

testing/listing/uncompressing file, 144 

uncompress files, 143, 144 

with verbose output, 142 
configuration files, for commands, 

finding, 75 
convert command 

batches of images, conversion to, 109 

image file formats, converting, 107 

resizing images, 107 

rotating images, 107 

special effects, 108-109 

text, adding to images, 107 

thumbnails, creating, 107-108 
copy files, 68-70, 136 
cp command, copy files, 68-70, 136 
cPanel, 252 
cpio archive, extracting from rpm, 40 
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CPU 
flags for supported features, 179 
managing usage. See CPU management 
usage, viewing. See running processes 

CPU management, 177-179 
CPU information, viewing, 178-179 
processor information, viewing, 179, 281 
utilization summary, 178-179 

Cream, 86 

crontab command 
command options, 170-171 
personal crontab file, creating, 170 

CUPS printing system 
tunneling for, 238 

curl command, 218-219 
FTP server, list /pub/directory, 219 
single-shot file transfers, 218 
username/password, adding, 219 

cut command 
columns, printing, 96 
columns, range of fields, actions on, 95 

Cygwin, 237 



Darwin UFS file system, 115 

data, copying, 69 

data files, types of, 59 

database, local, updating, 72 

date, system. See date command; time/date 

Date & Time Properties pane, 182 

date command 

time/date, changing, 183 

time/date, displaying, 182-183 
dd command 

backup, compressed, 70 

data, copying, 69 

empty disk image file, creating, 119 

IDE drive, clone partition of, 70 

swap area, creating within file, 121 
Debian Linux, 2 
deleting text, vi editor, 269 
desktop option 

set-up on install, 16 
device(s) 

types of, 62 
device drivers. See device files 
device files 

creating, 62 

functions of, 59, 62 

number representation for, 62 
devpts file system, 123 
df command 

disk space usage, checking, 136, 137 



file system type, adding, 131 

inode utilization, checking, 131 

limit output to local file system, 131 

and LVM volumes, mounting, 135-136, 137 

mounting file systems, utilization 
summary, 131 
dif f command 

files, comparing, 93-94 
dig command 

host IP address, viewing, 207 

hostname, search DNS servers for, 207 

record type query, 207 

reverse DNS lookup, 207 

specific name server query, 207 

trace recursive query, 207 
dircproxy, 230 
directories 

adding/ removing, 68 

compress all files in, 143 

creating, 61, 64 

execute bits, turning on, 61 

files, copying to, 68-70 

finding, 73-74 

functions of, 61 

identifying, 61 

open, checking for, 181 

order on stack, changing, 68 

permissions, 63-67 

sharing. See remote directory sharing 

symbolically linked directories, viewing, 68 
dirs command, directories, changing order, 68 
disk labels, 117 

See also partition tables 
disk resizing/ partitioning. See hard disk 

partitioning 
disown command 

running processes, disconnect from 
shell, 167 

running processes, manipulating, 167 
DISPLAY, 275 
display 

troubleshooting, 15 
dmesg command, kernel ring buffer contents, 

displaying, 191 
dmidecode command, hardware information, 

listing, 193 
documentation 

software, subdirectory for, 7 
Domain ID, wireless network, 203 
domain name 

setting on install, 16 
Domain Name System (DNS) servers, 

hostname queries, 206-208 
DOS, text files, converting to unix, 96 
double-spacing, text files, 89 
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downloading files, 216-223 

interrupted, continuing, 218 

mirror web site, 218 

from remote server, 216-217 

single web page, 217 
du command 

disk space usage, checking, 131 

excluding files, 132 

multiple directories, specifying, 132 

totals, obtaining with root user account, 132 

tree depth, specify summary, 132 

virtual file system size, checking, 119 
dump file system, 124 
DVD(s) 

backups. See DVD backups 

capacities, 152-153 

GUI tools for, 149 

media check tool, 22 

SUSE, sources for, 3, 11-12 
DVD backups, 152-154 

burn multi-session DVDs, 153 

drive support, checking, 153 

ISO image, creating, 150-152, 153 
DVD Kreator, 149 



e211abel command 

partition label, setting on partition, 117 

partition label, viewing, 117 
e2f sck command, LVM volume, decreasing, 

136, 137 
echo command 

bash history, number of commands, 44 
editors. See text editors 
eject command, unmount/ eject CDs, 127 
Emacs editor 

functions of, 81 
e-mail, 231-233 

attachments, 233 

mail command, 231-232 

MBOX format, 231-232 

mutt command, 232-233 

navigation, 233 

system log messages, 263 
encoding music, 101-103 
Enlightenment desktop project, 43 
Ensim, 252 
env command, environment variables, 

listing, 53 
environment variables, 52-53 

concatenate string to, 53 

defined, 52 

displaying, 53 



inheritance, 53 

naming convention, 52 

setting/ resetting, 53 

strings, concatenate to variable, 53 

tests, operators for, 55-57 
/etc/fstab files 

fields in, 123-124 

mounting file system from, 122-124 
eterm terminal window, 43 
Ethernet cards 

address/ status, 200-201 

configuration files, 198-199 

driver information, 197 

interface information, displaying, 200 

media access control (MAC) address, 200 

settings, displaying, 196-197 

statistics, displaying, 197 

See also network interface cards (NIC) 
ethtool command, 196-198 

auto-negotiation, turning-off, 198 

NIC driver information, displaying, 197 

NIC settings, changing, 197-198 

NIC settings, displaying, 196-197 

NIC statistics, displaying, 197 

syntax, viewing, 196 
ethX, 202 
EUID, 275 

Ex commands, vi editor, 271-272 
exec command, with find command, 74 
executable programs, man pages, 8 
execute bits on, directory use, 61 
export command, inheritance, 53 
exportf s command, exported shared 

directories, reloading, 224 
ext2 file system 

attributes, viewing, 118 

changing to ext3 system, 120-121 

features of, 112 

settings, changing, 120-121 
ext3 file system 

attributes, viewing, 119 

checking, 128-129 

converted from ext2 system, 112, 120-121 

creating on LVM partition, 135 

features of, 112 

settings, changing, 120-121 
extracting files. See compression 



FAT (VFAT) file system, 113 

f c command, bash history, editing, 45 

FCEDIT, 275 

fdisk command, 114-116 
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command options, 116 

versus parted command, 114 

partitions, creating, 114-115, 133-135 

partitions, list information, 114 

specific disk, choosing/working with, 114 
fg command, running processes, in 

foreground, 167 
file(s), 59-78 

attributes, changing, 70-71 

attributes, listing, 70-71 

blank, creating, 60 

copying, 68-70 

copying to new directory, 69 

device files, 59, 62 

directories, 61, 68 

downloading. See downloading files 

file name test, 55 

links, 61-62 

listing of, 75-76 

named pipes and sockets, 63 

navigation among, 67 

open, checking for, 181 

output, sending to, 46-49, 89 

ownership, changing, 66-67 

permissions, 63-67 

regular files, 59-60 

search, commands for, 71-75 

size, watching, 50 

swap area, creating within file, 121 

tests, operators for, 55-57 

transferring. See file transfer 

types, determining, 60 

verifying, 76-77 

viewing types of, 59-60 
file command 

contents of file, determining, 60 

file types, identifying, 60, 61 
file conversion 

image files, 107-109 

text files, 96 
file extensions 

audio files, 98 

RPM packages (.rpm), 18 

software packages (.rpm), 18 
file formats, man pages, 8 
File Integrity Agent (FIA), 263-264 
file systems, 111-138 

attributes, changing, 120-121 

attributes, viewing, 119-120 

creating on hard disk partition, 118 

dumping, 124 

functions of, 111 

hard disks, partitioning, 113-117 

joumaling, 112 

Linux, required partitions, 111 



Logical Volume Manager (LVM), 132-137 

mounting, 122-127 

navigation in, 67 

network shared systems, 113 

/proc, 277-281 

pseudo systems, 123 

RAID disks, 129-130 

remote, types of, 124 

scanning for errors, 128-129 

supported, listing of, 112-113 

swap partitions, 121-122 

unmounting, 127 

utilization summary of, 131 

virtual file system, creating, 118-119 
file transfer, 216-223 

from command line, 216-217 

FTP commands, 219-221 

Secure Shell (SSH) service utilities for, 
221-222 

single-shot transfers, 218 

Windows tools, 222-223 
FileZilla, 222 
find command, 72-74 

act on files with (exec option), 74 

case sensitivity, 73 

directories, finding, 73-74 

inaccessible directories, filtering, 73 

regular expressions with, 73 

search criterion, negating, 74 

size-based search, 74 

timestamp based search, 73 
f indf s command, find partition, 118 
f indsmb command, SMB host, scan for, 226 
finger command, user information, checking, 

258-259 
firewalls, 259-262 

configuring, 261-262 

information, listing, 261 

IP forwarding, enabling, 262 

iptable rules, stopping, 261 

nat table, viewing, 260-261 

port forwarding, 262 

requests for service, forwarding, 262 

rules, changing, 261 

rules set, listing, 260 

Source Network Address Translation 
(SNAT), 262 
f lac command 

AlFFto FLAC encoding, 102 

compression level, raising, 102 

WAV to FLAC encoding, 102 
FLAC files 

encoding to, 102 

See also f lac command 
flags, CPU, for supported features, 179 
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for command, variables for, 58 

forums on SUSE, 3 

free command, memory use, viewing, 

174-175 
Free Lossless Audio Code (FLAC), 97 

See also f lac command; FLAC files 
FreeBSD file system, 115 
freenode server, connecting to, 230 
f sck command 

command options, 129 

ext3 system, checking, 128-129 

file system, checking, 124, 128-129 

repair problems, 129 
FTP server 

downloading files from, 219-221 

login/ passwords, 217 

security issues, 219, 221 

See also If tp command 
full screen mode, Terminal window, 42 
fuser command 

kill processes, 165 

running processes with open files, viewing, 
164-165 
fusermount command, remote directory, 
unmounting, 229 



games 

man pages, 8 
gcombust, 149 
gedit, GNOME text editor, 86 
genisoimage,mkisofs command as pointer 

to, 150 
GIMP 109 
gimp command, running processes in 

foreground/background, 166 
Global SUSE Community forum, 3 
GNOME 

desktop, installing, 16 

gnome-terminal, 43 

text editor, 86 

VNC viewers, sharing desktop with, 249 
gpasswd command, group passwords, 

changing, 67 
GPT partition tables, 114 
Grand Unified Boot Loader (GRUB), 186-188 

boot options, 187 

reinstalling, 187 

settings, viewing, 187 
graphical install, 13 
graphical text editors, 86 
graphical tools 

for CD/DVD mastering/burning, 149 



for hard disk partitioning, 114 

for time/date settings, 182 
graphical user interface (GUI) 

commands, installing from, 6 

remote access, 4 

troubleshooting, 4 

unsupported features, 4 
graphics cards 

NVIDIA drivers, source for, 22 
graveman, 149 
grep command 

colorize search term, 90 

display file name, disabling, 90 

display unmatched strings, 90 

exact line, finding, 90 

ignore case, 90 

recursive search, 89-90 

text strings search, 89-90 
grip, CD files, ripping/encoding, 100 
groupadd command, groups, adding, 257 
groupdel command, group, deleting, 257 
groupmod command, group name/ID, 

changing, 257 
GROUPS, 275 
groups 

adding, 257 

deleting, 257 

name/ID, changing, 257 
groups command, user groups, 

listing, 253 
growisof s command 

compact option, 154 

DVDs, making/burning images, 154 

multi-burn session, 154 
grub command, boot loader, reloading, 187 
GUI Vim, 86 

GUID Partition Tables, 114 
gunzip command 

return files to file system, 141 

unzips/untars archive, 141 
gvim command, GUI Vim, launching, 86 
gzip command 

compression with, 142-143 

and tar command, 141 



H 



halt command 

benefits of, 190 

warning, 190 
hang-up signal, avoiding, 169 
hard disk 

CD, ripping to, 100 

fields, types/functions of, 278 
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partitioning. See hard disk partitioning 

view/change information, 193-194 
hard disk partitioning, 113-117 

backup, first partition, 70 

clone partition of IDE drive, 70 

disk read/write information, viewing, 
180-181 

fdisk command, 114-116 

file system, creating on partition, 118 

functions of, 113-114 

GPT partition tables, 114 

information about partitions, accessing, 114 

installer option, 113 

label, operations with, 117-118 

manual approach, 113 

parted command, 114 

partition tables, copy settings to, 116 

partition tables, copying, 116 

partitions, changing, 117 

partitions, listing, 114 

resizing partitions, 117 

specific disk, choosing, 114 

warnings, 117 

Windows partition, 115 

YaST scheme, 17, 114 
hard links 

benefits of, 148 

creating, 62 

functions of, 59, 61 

inodes, viewing, 62 

network backups, 147-148 
hardware 

changing information, 194 

information, viewing, 193-194 
hardware abstraction layer (HAL), 123 
hardware clock 

setting, 184 

See also time/date 
hdparm command 

hard disk information, viewing, 194 

warning, 194 
head command, top of file, viewing, 87 
header files 

man pages, 8 
help messages 

displaying for commands, 7 

formatting to reference card, 7 
Hierarchical File System (HFS), 150 
HISTCMD, 275 
HISTFILE, 275 
HISTFILESIZE, 275 
history, bash, 44-45 

backwards search, 45 

command history, editing, 45 



commands, listing, 44 

editing commands, 44-45 

navigation, 44 

strings, search for, 45 
HOME, 275 
host(s) 

connectivity to, checking, 208-209 

IP address, viewing, 207 

traceroute to host, 210-211 
host command, reverse DNS lookup, 207 
HOSTNAME, 275 
hostname(s) 

bash shell, 42 
hostname 

command line prompt set to, 5 
hostname(s) 

DNS server queries, 207 

information, getting for local machine, 207 

IP addresses, viewing instead of, 211 

setting, 208 
hostname 

setting on install, 16 
hostname command 

hostname information, viewing, 207 

hostname setting at start-up, 208 

temporary hostname, setting, 208 
HOSTTYPE, 275 

HTML, single Web page, downloading, 217 
HTTP files, downloading with wget, 216-217 
hwclock command 

hardware clock, setting, 184 

system clock, resetting, 184 

time, viewing, 184 



icecast server, streaming music, set-up, 

103-105 
ices audio source client, streaming music, set- 
up, 103-105 
ICMP packets, 211 

id command, user information, checking, 258 
identify command, images, information, 

accessing, 106 
if conf ig command 
Ethernet interface address/status, displaying, 

200 
NICs, active/inactive, information on, 200 
ifdown/ifup, network interface, bringing 

offine/online, 200 
ImageMagick, 106 
images, 106-109 
batches, working with, 109 
colorizing, 108 



290 



82928bindex.qxd:Toolbox 11/1/07 12:13 PM 



age 291 



Index ■ I 



file format, converting, 107 

information about, accessing, 106 

resizing, 107 

rotating, 107 

sepia tone, 108 

swirling, 109 

text, adding to, 107 

thumbnails, creating, 107-108 
indenting, text files, 89 
info command 

info database, entering, 9 

zypper utility, 28 
info documents 

database, directory for, 9 

displaying, 9 

functions of, 9 

info screen navigation, 9 
inheritance, environment variables, 53 
init command 

changed processes, start/ stop, 189 

run level, changing, 188 

run level, starting, 186 
initrd, initial ramdisk, repairing, 187-188 
initscripts, case usage, 57 
inodes 

hard/symbolic links, viewing, 62 

listing, 148 

utilization summary, 131 
Insert or Replace modes 

vi editor, 268-269 
Installation into Directory 

YaST Control Center, 22 
installation of openSUSE, 11-18 

boot prompt install, 13 

boot prompt options, 13-15 

download mirrors, iso directory, 12 

graphical install, 13 

hard disk partitioning. See hard disk 
partitioning 

install options, 12 

installation media, sources for, 3, 11-12 

installation screens, 15-17 

mini. iso image, downloading, 12 

network connections, 16, 195-196 

online resources for, 13, 14 

passwords, assigning, 251 

in rescue mode, 14 

software packages. See software packages 

SSH install, 13 

in text mode, 13 

troubleshooting, 13-18 

VNC install, 13 
Internet connection 

testing on install, 16 



Internet Relay Chat (IRC), 229-231 

exit session, 230 

freenode server, connecting to, 230 

help, 230 

IRC channel, joining, 231 

irssi, 230-231 

sending messages, 230 

SUSE resource page on, 5 

xchat option, 230 
iostat command 

bottlenecks, checking for, 180 

CPU utilization reports, 178 

installing, 174 
IP addresses 

connectivity to gateway, checking, 
208-209 

DNS information, reverse lookup, 207 

forwarding, enabling, 262 

host computer, viewing, 207 

hostname resolution, 206-208 

Samba, determining with, 228 

in use, query for, 210 

viewing instead of hostnames, 211 
ip command 

add/delete routes, 212 

all interfaces information, displaying, 201 

default gateway, checking, 208 

Ethernet interface information, 
displaying, 201 

routing information, displaying, 212 

static ARP entries, adding to cache, 210 
IP Masquerading 

allowing, 281 
iptables command 

filter table, displaying, 260 

firewall information, listing, 261 

nat table, viewing, 260-261 

requests for service, forwarding, 262 

rules, changing, 261 

rules, stopping, 261 

rules set, listing, 260 
irssi 

information resource on, 231 

installing/launching, 230 
ISO image 

boot image, copying, 12 

creating on CD/DVD, 150-152, 153 

files on, accessing, 151-152 

header information, viewing, 151 

mounting/unmounting, 152 
isoinf o command, header information, 

viewing, 151-152 
iso9660 file system, 112 
IS09660 standard, 150 
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iwconf ig command 
wireless card/ settings, search for, 202 
wireless settings, modifying, 202-203 



J 



JED text editor, 81 

Jffs2 file system, 112 

jfs file system, 112 

jobs command, background jobs, 

managing, 167 
JOE editor, 81-84 

adding text, 81 

control key functions, 82-84 

installing, 81 

opening text file, 81 
Joliet, 150, 151 
journaling 

and file systems, 112 

functions of, 112, 113 
Journaling Flash File System 2, 112 



K 



K Desktop Environment (KDE) 
installing, 16 
K3b tool, 149 
and SUSE Linux, 41 
terminal window, opening, 41-43 
text editor, 86 

kedit, 86 

kernel, 190-193 
add/remove module, 192 
initial ramdisk, repairing, 187-188 
klogd (kernel log daemon), 262 
loaded modules, sorting, 91 
loaded modules, viewing, 191-192 
loading of, 186 

memory cache. See kernel slab 
messages file, paging through, 191 
module information, displaying, 192 
name of, displaying, 190 
parameters, control of, 192 
ring buffer, displaying contents, 191 
routines, man pages, 8 

kernel slab, memory cache statistics, 
viewing, 177 

key-based communication. Seessh 
command 

kickstart utility, 14 

kill running processes 
kill command, 167, 169 
killall command, 167, 169 
sigkill command, 168-169 



signal to running process, sending, 168-169 

stopping by command name, 169 

and top command, 163 
klogd (kernel log daemon), 262 
KNOPPIX, 2 
konsole terminal window, 42-43 

profiles, 42 

screen mode, 42 



label(s) 

disk label, 117 

See also partition label 
lame command 

MP3 format, file conversion to, 102 

tag information, adding to MP3 files, 102 
language pack CD 

multinational support, 11 
last command, logins, checking, 258 
lazy unmount, 127 
leafpad, 86 

legacy communication tools, 236 
less command 

scrolling with, 88 
LESSOPEN, 275 
lftp command 

bookmark location, 220 

close session, 220 

current directory, checking, 220 

current directory, listing, 220 

directory, creating on server, 220 

download, sending to background, 220 

FTP server, connecting to, 219 

local directory, change to, 220 

matched files, uploading, 220 

new directory, change to, 220 

path completion, 222 

remote directory perms, changing, 220 

server directory, change to, 220 

upload files to server, 220 

warning, 219 
If tpget command, non-interactive 

download, 221 
library calls, man pages, 8 
Libzypp, 23 
line(s), exact line, finding 

count, text files, 90 

exact line, finding, 90 
LINES, 275 
links 

hard links, 59, 61-62 

soft links, 59 

symbolic links, 62 
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links browser, 215-216 

control key functions, 216 
Linmodems, 203 
linux command 

installation options, 13-14 
list-updates command 

zypper utility, 28 
In command, hard/ symbolic links, creating, 

62, 182 
locate command 

case sensitivity, 72 

files, finding, 72 
log(s), 262-263 

central syslog server, 263 

log parser, 263 

logwatch messages, 263 

rotation, automatic, 262 

syslogd facility, sending messages to, 263 

system logs, 262-263 
logger command, messages, sending to 

syslogd, 263 
Logical Volume Manager (LVM), 132-137 

ext3 file system, creating on partition, 135 

functions of, 133 

Ivm2package requirement, 132 

mounting volume, 123, 135-136 

removing volume from volume group, 137 

space, adding to, 136-137 

space, removing from, 137 

volumes, creating, 133-135 

warning, 133 
login name 

installation screen, 17 

user authentication method, setting, 17 
LOGNAME, 276 
logrotate command, log rotation, 

automatic, 262 
loopback mount 

creating, 126 

device status, viewing, 126 

loopback device, choosing, 126 
loops, bash shell constructs, 57-58 
losetup command 

mounted loopback devices, listing, 126 

mounted loopback devices, unmounting, 126 
LS_COLORS, 276 
lscommand 

command output, passing as parameter, 
48-49 

device files, listing, 62 

directory, identifying, 61 

file inodes, listing, 148 

file lists, long, display of, 75-76 

file types, appearance in list, 76 

named pipe, creating, 63 



output, redirecting, 46-49 
for statement variables, 58 
lsattr command, file attributes, listing, 

70-71 
lsmod command, loaded module names, 

viewing, 191-192 
lsof command, open files/directories, 

checking, 181 
lspci command 
PCI hardware information, listing, 193 
wireless card, search for, 202 
lvcreate command, LVM partition, 

creating, 134 
lvremove command, LVM volume group, 

removing, 137 
lvresize command 
LVM volume, decreasing, 137 
LVM volume, increasing, 137 
lzop command, compression with, 143-144 



M 



MACHTYPE, 276 
MadWifi, 202 
Madwifi project, 28 
MAIL, 276 
mail command 

e-mail operations, 231-232 

interactive use, 232 
MAILCHECK, 276 
mailing lists, for SUSE, 3 
man pages 

displaying, 8-9 

functions of, 7 

search database, 7-8 

sections of, 8 

Web site/resources for, 9 
man command 

command options, 9 

man page, displaying, 8 

page section, viewing, 9 
Managed/Infrastructure mode, wireless 

connections, 203 
Master Boot Record (MBR) 

and boot process, 186 

copying, 70 

and hard disk partitioning, 113 
MBOX format, e-mail, 231, 232 
mdadm command 

RAID disk operations, 129-130 

softraid devices, checking, 129-130 

softraid devices, managing, 130 
md5sum command 

checksum of files, producing, 76 
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md5sum data, checking, 136 

verify file validity, 77 
media access control (MAC) address 

viewing, 200 

wireless network, 203 
memory, 174-177 

managing usage. See memory management 

memory needs, determining, 175 

troubleshooting at installation, 14 

usage, sort based on, 91 

usage, viewing. See running processes 
memory management, 174-177 

kernel slab memory cache statistics, 
viewing, 177 

memory use, viewing, 174-176 

Memtest86, starting, 14 

screen-oriented views, 175 

view over time period, 175-176 
memtest command 

Memtest86, starting, 14 
merging, text file output, 94 
Microsoft New Technology File System 

(NTFS), 112 
mii-tool, 196 

mingetty processes, virtual terminals, 43 
minicom command 

help information, 206 

modem settings, 205-206 

talk to modem, 205-206 

warning, 206 
mini.iso image 

installation of openSUSE, 12 
minix file system, 113 
mirrors 

directory, network backups, 147 

ISO images, downloading, 12 

web site, recursive, downloading, 218 
mkdir command 

directory, creating, 61, 64 

mount point, creating, 119, 135 
mkf ifo command, named pipe, creating, 63 
mkf s command 

ext3 file system, creating on LVM 
partition, 135 

file system, creating, 118 

file system, formatting/checking, 118 

label, adding to partition, 118 
mkinitrd command, initial ramdisk, 

repairing, 188 
mkisof s command 

ISO images, creating, 150, 153 

multiple sources, adding to image, 151 

as pointer to genisoimage, 150 
mknod command, device files, creating, 62 



mkpartf s command, warning, 117 
mkswap command 

bad blocks, checking for, 121 

swap partition, creating, 121 

swapspace, setup in file, 121 
modems, 203-206 

configuration file, creating, 203-204 

dial-up entry, use of, 204 

direct talk to, 205-206 

parameters, changing, 206 

passwords/usernames, 204 

phone numbers, set-up, 204 

Point-to-Point Protocol connection, 204 

scan for, 203-204 

serial ports, 205-206 

settings, viewing, 205 

software types, 203 

troubleshooting, 204 
modifyrepo command 

for automatic refresh, 24 
modinfo command, loaded module 

information, 192 
modprobe command 

modules, adding/ removing, 192 

modules, listing, 192 
more command 

limitations of, 88 

paging with, 88 
mount command 

execution of binaries, preventing, 125 

file system type, specifying for listing, 125 

file systems, listing, 124 

hung request, interrupting, 224-225 

label/name of partition, displaying, 125 

loopback mount, 126 

mount options, 123-126 

mount point, creating, 119, 135 

mount system to location in tree, 126 

mount with device name only, 125 

mount with mount point only, 125 

mounted systems, listing, 123 

move file system, 126 

NFS remote shares, 224-225 

partition label, viewing, 124 

preventing mount at boot time, 123 

read/write or read-only, specifying, 123, 125 

remounting file systems, 126 

Samba shares, mount on local system, 227 

system to mount, specifying, 125 

type of system to mount, 125 
mounting file systems, 122-127 

automatic mount, 123 

boot image, mounting, 126 

from /etc/fstab files, 122-124 
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and hardware abstraction layer, 123 

Logical Volume Manager (LVM), 123 

mount point, creating, 119 

purpose of, 122 

remounting, 126 

unmounting, 119, 127 

utilization summary, 131 

virtual file system, 119 

See also mount command 
mouse, nano editor, use of, 84 
MP3 format 

converting files to, 102 

tag information, adding to, 102 

tag information, viewing, 103 
mpg321 player 

MP3 files, playing, 98 

playlists, 99 

source for, 97 

tag information, viewing, 103 
msdos file system, 112 
multinational support 

language pack CD, 11 
music. See audio 
mute, audio, 99 

mutt command, e-mail operations, 232-233 
mv command, backups, rotating, 147 



N 



named pipes 

creating, 63 

functions of, 59 
named sockets, functions of, 59, 63 
nano editor, 84-86 

adding text, 84 

control key functions, 84-86 

launching, 84 

opening text file, 84 
navigation 

e-mail, 233 

file system, 67 

Info screen, 9 

links browser, 216 

text, paging through, 88 

vi editor, 267-268 
ncpfs file system, 113 
Ndiswrapper, 202 
nedit, 86 

NetBSDfile system, 115 
Netfilter, 262 
netstat command 

daemon listening, viewing, 213 

NIC statistics, displaying, 198 

packet-level information, viewing, 212-213 



statistics, refreshing, 198 

TCP connections, viewing, 213 

UDP connections, viewing, 213 
NetWare, 113 
network(s) 

packet-level information, viewing, 212-213 

port scanning, 214 

scan entire network, 214 

shared file systems, 113 
Network Address Translation (NAT) 

allowing and proc, 281 

functions of, 261 

nat table, viewing, 260-261 

Source Network Address Translation 
(SNAT), 262 
network backups, 145-149 

hard links, use of, 147-148 

incremental backups, 147 

local to remote system, copying files 
from, 146 

media for, 145 

mirror directory, 147 

from multiple client machines, 146 

OpenSSH tools, 145-146 

sync files, 148 

tgz files, writing files to, 146 
Network Card window 

network connections, 196 
network connections, 195-214 

hostname information, 206-208 

modems, 203-206 

Network Card window, 196 

set-up on install, 16, 195-196 

troubleshooting. See network connections 
troubleshooting 

wireless. See wireless connections 

See also Ethernet cards; network interface 
cards (NIC) 
network connections troubleshooting, 208-214 

Address Resolution Protocol (ARP), checking, 
209-210 

connectivity to host, checking, 208-209 

default gateway, checking, 208 

hardware, checking, 196 

IP connectivity, checking, 208-209 

network interface cards (NIC), 196 

TCP connections, checking, 212-213 

traceroute to host, 210-211 
Network Devices window 

modem connections, 203 
Network File System (NFS), 223-225 

add/modify directories, 224 

local system directories, availability of, 224 

remote directory sharing, 223-225 

remote shares, mounting, 224-225 
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shared directories, displaying, 223 

SUSE-specific issues, 225 
network interface cards (NIC), 196-198 

active/inactive, information on, 200 

auto-negotiation, 197-198 

configuration files, 198-199 

driver information, 197 

ethtool, use of, 196-198 

media access control (MAC) address, 200 

multiple interfaces, bring up/down, 200 

network service, shutdown/bringup, 199 

output, screen-oriented, 198 

settings, changing, 197-198 

settings, displaying, 196-197 

settings, sticking at reboot, 198 

statistics, displaying, 197, 198 

status check, 199-200 

take offline/bring online, 199 

troubleshooting, 196 
Network Names, wireless network, 203 
network resources, 215-234 

e-mail, 231-233 

file transfer, 216-223 

Internet Relay Chat (IRC), 229-231 

links browser, 215-216 

remote directory sharing, 223-229 
Network Time Protocol (NTP) 

stopping service, 185 

time/date, setting with, 184-185 

turning on service, 182, 185 
newgrp command, group assignments, 

changing, 67 
newline characters, adding to stream of text, 92 
NeXTSTEP file system, 115 
nfs file system, 113 

mounting at boot time, 124 
nice command 

nice value, changing, 166 

nice value, viewing, 165-166 

running processes, adjusting priority, 166 

warning, 166 
nmap command 

host scan, 214 

network scan, 214 

port scan, 214 

verbosity from, 214 
nmblookup command, IP addresse, 

identifying, 228 
nohup command, hang-up signal, avoiding, 169 
Normal mode 

vi editor, 267 
Novell 

license agreement, 15 



Patch CD, installing, 22-23 

SLED/SLES media, source for, 11 

SUSE editions, 2 

system information, sending to, 17 
NTFS file system 

features of, 112 

partition, resizing, 117 
ntpdate command 

NTP time, setting, 185 

ntpd command as future replacement 
for, 185 
ntupdate command, NTP services, turning 

on, 185 
null characters, generating, 69 
numbers, testing for, 55 
NVIDIA drivers 

source of, 22 



Octal Dump, 69 
od command 

null characters, viewing, 69 

special characters, viewing, 96 
Ogg Vorbis 

CD files, encoding, 101 

oggl23, playing files, 98, 105 

skip to next song, 98 
oggenc command, CD files, 

encoding, 101 
ogginfo command, header information, 

viewing, 101 
OLDPWD, 276 
Online Update 

YaST Control Center, 20 
Open Port in Firewall, 249 
Open Source Sound System (OSS), 99 
OpenBSD file system, 115 
OpenSSH 

network backups, 145-146 

Web site for, 145, 236 

See also Secure Shell (SSH) service 
openSUSE, 2 

Hardware Compatibility List, 3 

installation media, sources for, 11-12 

installing. See installation of openSUSE 

online resources, 3-4 

software, online sources, 4 

software repositories, 23 

updates, zypper command, 33 
OSTYPE, 276 
ownership, files, changing, 66-67 
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pae flag, 179 

paginating, text files, 88-89 

paging 

more/less commands, 88 

text files, 88 
parameters. See variables 
parted command 

disk partitions, listing, 116 

versus f disk command, 114 

interactive use, 116 

partitions, changing, 117 

resizing partitions, 117 

warning, 117 
partition label 

adding to partition, 118 

as search criteria, 118 

setting on partition, 117 

viewing, 117, 124 
partition tables 

copy settings to, 116 

copying, 116 

GTP partition tables, 114 

GUID Partition Tables, 114 

PC-BIOS partition tables, 113-114 
partitioning hard disk. See hard disk partitioning 
passwd command 

lock/unlock user accounts, 255-256 

password expiration, managing, 256 

password setting, for user accounts, 
252-253 

regular user, changing password, 255 

root user, changing password, 255 
passwords, 255-257 

changing, 255-256 

expiration, 256 

FTP server, 217 

group assignments, changing, 66-67 

icecast, 103 

installation screen, 16 

at Linux installation, 251 

modems, 204 

root users, 52, 251 

user authentication method, setting, 17 
pasting text, vi editor, 269 
patch command, patched file, output to, 94 
patch module 

creating, online resources for, 23 

patches, viewing options, 20 

YaST Control Center, 20, 22-23 
patches 

listing, zypper command, 30 



patches command 

zypper utility, 27 
patch- info command 

zypper utility, 27,30 
PATH, 276 

command in, troubleshooting, 5 

scripts, placing in, 54 
PC-BIOS partition tables, 113-114 
permissions, 63-67 

changing, 64-66 

ownership, changing, 66-67 

settings, characters of, 63 

unmask, setting, 66 
pgrep command 

command name, search for, 163 

process IDs, finding, 164 

user related processes, finding, 164 
PhoEniX, 230 

pico editor, clone of. See nano editor 
Pine e-mail client, 84 
ping command, IP connectivity, checking, 

208-209 
pipe(s) 

functions of, 47, 63 

named pipes, 59, 63 

processes, redirect output to, 47 
play command 

audio formats/ effects, viewing, 98 

music files, playing, 98 
playlists 

creating, 99 

files, copying, 104 

ices server, 104 
Plesk, 252 

Point-to-Point Protocol connection, 204 
popd command 

add/remove directories, 68 

directories, changing order, 68 
port forwarding, 262 
powerof f command, benefits of, 190 
PPID, 276 
PRINTER, 276 
printing 

columns, 95-96 

printer, sending output to, 89 

text files, 88-89 
private key, use from USB drive, 241-242 
proc, 277-281 

directory information, viewing, 277-281 

processor information, viewing, 179 

as pseudo file system, 123 

values, changing, 281 
processor. See CPU; CPU management 
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procps package, 174 

profiles 
konsole terminal window, 42 
network backups, 149 

PROMPT_COMMAND, 276 

ps command 
bash shell, starting, 43 
column output, 159-161 
every running process, viewing, 157 
hierarchy of processes, viewing, 157-159 
mingetty processes, viewing, 43 
running processes, custom views, 161 
running processes, viewing for current user, 

156-162 
text files, paging, 88 

PS1, 276 

PSCP,223 

pseudo file systems, 123 

PSFTP 223 

pstree command, running processes, tree 
views, 158-159 

Public key authentication, Secure Shell (SSH) 
service, 239-240 

pushd command 
add/remove directories, 68 
directories, changing order, 68 

PuTTY, 237 

pvcreate command, LVM volume, make sdbl 
on, 134 

pvs command, LVM volume information, 
viewing, 134 

PWD, 276 

pwd command 
print working directory, 67 
symbolically linked directories, viewing, 68 



RAID disks, 129-130 

3ware/AMCC controllers, use of, 130 

functions of, 129 

softraid devices, checking, 129-130 

softraid devices, managing, 130 
RAM 

memory needs, determining, 175 

memory test, memtest86, 14 

resident size, 175 

usage, viewing, 174-176 
RANDOM, 276 
rar package 

downloading, 34 
rdesktop command, Windows Remote 
Desktop, connecting to, 247 



read-only file system, mounting file system 

as, 125 
read-test 

YaSt Control Center, 22 
read/write file system 

bottlenecks, checking for, 180 

mounting of, 125 
read-write test, destructive, 128 
reboot 

failure, troubleshooting, 187 

stopping system, commands for, 190 
reboot command 

benefits of, 190 

warning, 190 
Red Hat Enterprise Linux (RHEL), 2 
Redundant Array of Independent Drives. 

See RAID disks 
reference cards 

commands, formatting to, 7 
refresh 

zypper repositories, 24, 26 
refresh command 

zypper repository metadata, reloading, 24 
regex, 79-80 

See also regular expressions 
regular expressions 

listing of, 80 

search based on, 73 

text files, matching with, 79-80 
regular files 

creating, 60 

identifying, 60 

types of, 59 
reiserfs file system, 112, 113 
remote directory sharing, 223-229 

Network File System (NFS), 223-225 

with Samba, 225-229 

Secure Shell Service file system 
(SSHFS), 229 
remote system administration, 235-250 

GUI applications, running, 167 

legacy communication tools, 236 

port scanning, 214 

screen terminal multiplexer, 242-245 

Secure Shell (SSH) service, 235-242 

Virtual Network Computing (VNC), 248-250 

Windows Remote Desktop, 245-247 

X Window System (X), 247-248 
remounting file systems, 126 
removerepo command 

remove repository, 24 
renamerepo command 

alias of repository, renaming, 24 
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renice command 

nice value, changing, 166 

running processes, adjusting priority, 166 
replace 

characters, 92 

text, 91-92 
repos command 

repository information, listing, 24 
rescue mode 

installation of openSUSE in, 14 
resident size, RAM, 175 
resize command, hard disk partition, 

resizing, 117 
resize2f s command 

LVM volume, decreasing, 137 

LVM volume, increasing, 136-137 
resizing images 

batches of images, 109 

single image, 107 
resolvables 

zypper utility, 29-30 
Rhythmbox, 103, 105 
rm command, backups, rotating, 147 
Rock Ridge extensions, 112 
Rock Ridge Interchange Protocol, 150-151 
root file system, files, finding, 73 
root user 

password, changing, 255 

password for, 52, 251 

passwords, setting on install, 16 

prompt for (#), 5 

shell, enabling for, 50-51 
rootkits, detecting, 264 
rotating images, 107 
route command 

default gateway, adding, 212 

delete route, 212 

local routing table, displaying, 211 

new network route, adding, 212 
routing table 

default gateway, checking, 208 

local, displaying, 211 
rpm command 

compared to yast command, 18 

to find commands, 6 

functions of, 19 

install package from Internet, 34 

installed packages, verifying, 38 

non-SUSE packages, listing, 37 

package information, displaying, 35-37 

package lists, paginating, 88-89 

preinstall/postinstall scripts, listing, 37 

removing packages, 35 



RPM file contents, listing, 36 

security operations, 264 

text files, formatting for printing, 88-89 

upgrading with, 34 
rpm packages 

building with SRPMs, 39-40 

contents of, 18 

file extension (.rpm), 18 

files, extracting from, 40 

installing, 34 

RPM Package Manager (RPM), 18 
rpm2cpio command 

rpm packages, extracting files, 40 
rsnapshot command 

installing, 145 

snapshots of file, 145 
rsync command 

hard links, use of, 147-148 

incremental backups, 147 

mirror directory, 147 

network backups, 147, 147-148 
run levels 

changing, 188-189 

viewing, 188 
runlevel command, run level, viewing, 188 
running processes, 155-171 

active, watching ongoing basis, 162-163 

column output, 159-161 

custom views, 161 

hang-up signal, avoiding, 168 

hierarchy of processes, viewing, 157-159 

killing, 163, 165, 167-169 

priority, adjusting, 166 

run priority, adjusting, 163 

running in foreground/background, 166-167 

scheduling runs, 169-171 

searching for, 163-165 

signaling, 167-169 

viewing, 156-162, 178-179 



Samba, 225-229 
configuration files, checking, 228-229 
file locks, 227-228 
FTP-style file sharing, 227 
hosts, lookup, 228 
installing samba-swat, 225 
Linux user, adding, 225-229 
mounting at boot time, 124 
mounting shares, 227-228 
network neighborhood, text representation 
of, 226 
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remote directory sharing, 225-229 

services, listing, 225-229 
sar command, installing, 174 
saving files, vi editor, 266 
scheduling, running processes, 169-171 
scp command 

file transfer, 221-222 

recursive copies, 222 

timestamp/permission, preserving, 221 

warning, 221 
screen(s), splitting, vi editor, 266 
screen command 

active screens, listing, 243 

reconnect to session, 244-245 

running, 243 

sessions, naming, 245 

sharing screens, 245 
screen terminal multiplexer, 242-245 

control key functions, 244 

functions of, 243 

installing, 243 

naming sessions, 245 

reconnect to session, 244-245 

sharing sessions, 245 
Scribes text editor, 86 
scripts 

See also shell scripts 
scrollback lines, konsole window, 42 
scrolling 

arrow keys for, 44, 88 

less command, 88 
sdif f command, files output, merging, 94 
search 

bash history, 45 

colorize search term, 90 

criterion, negating, 74 

files, commands for, 71-75 

regular expressions, use of, 73 

for running processes, 163-165 

text strings, 89-90 
search command 

zypper utility, 27 
SECONDS, 276 
Secure Shell (SSH) service, 235-242 

different port, accessing on, 238 

functions of, 235-236 

installing, 13, 237 

public key authentication, 239-240 

remote log-in, 237 

as SOCKS proxy, 239 

tunneling, 238-239, 250 

Virtual Network Computing (VNC), use 
with, 250 

See also ssh command 



Secure Shell Service file system (SSHFS) 

mounting directory, 229 

remote directory sharing, 229 

unmounting directory, 229 
security, 251-264 

AppArmor, 263 

chkrootkit, 264 

File Integrity Agent (FIA), 263-264 

firewalls, 259-262 

FTP download issues, 219, 221 

online resources for, 27 

passwords, 255-257 

rpm command, 264 

rpm packages, 38 

Security Enhanced Linux (SELinux), 263 

signing key, software downloads, 27 

sticky bit, use of, 65 

and sudoers, 52 

system binary replacement, 71 

system logs, 262-263 

Tripwire, 264 

Virtual Network Computing (VNC) issue, 250 
Security and Users window, 252 
Security Enhanced Linux (SELinux), 263 
sed command 

change number, send to text file, 93 

delimiter, changing, 92 

multiple substitutions, 92 

newline characters, adding with, 92 

text, replacing, 91-92 
sepia tone, images, 108 
serial ports 

C0M1 settings, viewing, 205 

information, viewing, 205 

listing of, 205 

modem set-up, 205-206 

remapping, 205 
Server Message Block (SMB), 225 

hosts, lookup, 226 
set command 

environment variables, displaying, 53 

vi editor settings, 271-272 
setserial command 

serial port information, viewing, 205 

serial port remapping, 205 

serial ports, listing of, 205 
sfdisk command 

command options, 116 

LVM volumes, viewing, 134 

partition tables, copying, 116 
sf tp command, file transfer, 222 
shalsum command 

checksums of files, producing, 76 

file validity, verifying, 76-77 
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SHA1SUM file, source for, 76 
shell, 41-58 

aliases, 49 

bash (Bourne Again Shell) history, 44-45 

commands, installing from, 6 

completion of commands, 45 

delegating power, sudo command, 51-52 

environment variables, 52-53 

functions of, 41 

output streams redirection, 46-49 

output streams, types of, 46 

scripts, creating. See shell scripts 

settings, location of, 44 

special characters, 273-274 

stderr error output, 46 

stdin/stdout output, redirecting, 46-49 

super user power, su command, 50-51 

Terminal window, accessing from, 41-43 

text-based login, 41, 43 

types of, 41 

variables, listing, 275-276 

virtual terminals, 43-44 

watching commands, 50 

watching files, 50 
shell prompt ($), 5 
shell scripts, 54-58 

content, adding to, 54-58 

editing, 54 

file names, testing for, 55 

first line, contents of, 54 

functions of, 54 

loop constructs 57-58 

numbers, testing for, 55 

PATH, placing in, 54 

reference guide for, 58 

running, 54 

test expressions, operators for, 55-57 
SHELL, 276 
SHELLOPTS, 276 
shutdown command 

benefits of, 190 

warning, 190 
signup command, terminal, hang-up, 168 
sigkill command, running processes, 

stopping, 168-169 
signals, to running processes, 167, 167-169 
signing key 

and software download safety, 27 
single-shot file transfers, 218 
slabtop command, kernel slab memory cache 

statistics, screen-oriented view, 177 
Slackware Linux, 2 
smbclient command 

FTP-style file sharing, 227 

services, listing, 226 



smbfs file system, 113 

smbpasswd command, Linux user, adding to 

Samba, 226 
smbstatus command, current 

connections/file locks, viewing, 227-228 
smbtree command, network neighborhood, 

text representation of, 226 
sockets, named sockets, 59, 63 
SOCKS proxy, SSH as, 239 
soft links. See symbolic links 

functions of, 59 
softraid devices. See RAID disks 
software packages, 18-40 

documentation, subdirectory for, 7 

file extension (.rpm), 18 

Madwifi project, 28 

management of. See rpm command; YaST 
Control Center; zypper command 

online reference for, 7 

for openSUSE, 4 
repositories, YaST Control Center, 23 

RPM packages, 18 

signing key, safety feature, 27 

third party, warning about, 6, 19 
Solaris file system, 113 
sort command 

descending memory usage as basis, 91 

by kernel module size order, 91 

text file output, 91 
sorting 

running processes lists, 162 

See also sort command 
sound- juicer, CD files, ripping/ 

encoding, 100 
Source Network Address Translation 

(SNAT), 262 
source RPMs (SRPMs) 

rpm packages, building with, 39-40 
sox command 

file information, displaying, 105 

seconds of sound, deleting, 106 

WAV to AIFF encoding, 102 
sox package 

audio formats/ effects, viewing, 98 

installing, 98 
sox utility 

WAV files, concatenating, 105 

WAV files, mixing, 105 
special files, man pages, 8 
Speex files, 97 
spell checking 

Joe editor, 81 

nano editor, 84 
split command, vi editor screen, 
splitting, 266 
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Splunk, 263 

squashfs file system, 112 

ssh command, 237-242 

archives, backing up, 146 

default key, adding, 242 

forcible exit, 237 

key pair, generating, 240-241 

private key, storing, 241-242 

public key authentication, 239-240 

remote commands, preventing, 239 

remote host, log-in, 237 

remove stored keys, 242 

as SOCKS proxy, 239 

SSH, accessing on different port, 238 

ssh directory, creating, 241 

tgz files, writing files to, 146 

tunneling, 238-239 

unlocked keys, storing, 241-242 

VNC server, using, 250 
sshf s command, remote directory, 

unmounting, 229 
startup, management of, 188-190 
stderr 

output, redirecting, 46 

shell error output, 46 
stdout 

output, redirecting, 46 

shell output stream, 46 
sticky bit, security function of, 65 
storage device management, 179-181 

bottlenecks, checking for, 180 

disk read/write information, viewing, 
179-181 

open files/directories, checking, 181 
streaming music, set-up, 103-105 
strings 

bash history, search for, 45 

concatenate to environment variables, 53 

replace text, 91-92 

search, with grep command, 89-90 

search, with less command, 88 

search, with regular expressions, 79-80 

tests, operators for, 55-57 
strings command, ASCII text, extracting, 91 
stty command, C0M1 settings, viewing, 205 
su command, shell, super user functions, 

50-51 
sudo command 

aliases/groups, defining, 52 

shell, delegating power with, 51-52 

warning, 52 
sudoers, as security risk, 52 
SUID shell scripts 

warning, 65 



SunOS file system, 113 
super user, shell, enabling for, 50-51 
support, Web site/resources for, 3-4 
SUSE Linux 

audio, 97-106 

backups, 139-154 

command line prompt (>), 5 

command reference, 6-9 

compared to other Linux versions, 2 

file systems, 111-138 

files, 59-78 

images, 106-109 

installing. See installation of openSUSE 

media, sources for, 11-12 

network connections, 195-214 

network resources, 215-234 

remote system administration, 235-250 

running processes, 155-171 

security, 251-264 

shell, 41-58 

software packages for. See software 
packages 

SUSE, use of term, 2 

system management, 173-194 

text files, 79-96 

Web site/ information resources on, 3-4 
SUSE Linux Enterprise Desktop (SLED), 2 

online resources, 3 
SUSE Linux Enterprise Server (SLES), 2 

online resources, 3 
svm flag, 179 
swap file system, 112 
swap partitions, 121-122 

bad blocks, checking for, 121 

creating, 119, 121 

list of swap files, viewing, 122 

swap area, creating within file, 121 

swap area priority, specifying, 122 

swap area, turning off, 122 

swap area use, indicating, 122 

swap files, listing, 122 

usage, turn on/turn off, 122 
swapf s command, swap partition, 

creating, 119 
swapoff command, swap area, turning 

off, 122 
swapon command 

swap area priority, specifying, 122 

swap area, use of, 122 

swap files/partitions, viewing, 122 
swirling, images, 109 
symbolic links 

creating, 62, 182 

creating to specific directory, 67-68 
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functions of, 61, 67 

inodes, viewing, 62 
sync files, network backups, 148 
sysctl command 

kernel parameters, listing, 192 

kernel parameters, modifying, 192-193 

proc information, changing, 281 
sysfs file system, 123 
syslog-ng (system log daemon), 262 
sysstat package, installing, 174 
system administration commands, man 

pages, 8 
system administration, remote. See remote 

system administration 
system binaries, security issues, 71 
system calls, man pages, 8 
system clock. See time/date 
system logs, 262-263 

central logging, 263 
system management, 173-194 

boot loader, 186-188 

CPU usage, 177-179 

hardware information, viewing, 193-194 

kernel, checking, 190-193 

memory, 174-177 

run levels, 188-190 

services, 189-190 

startup, 188-190 

storage devices, 179-181 

time/date, 181-186 
System Use Sharing Protocol (SUSP), 150 



Tab key, command line completion, 45 
tail command 

end of file, viewing, 87 

end of file, watching, 87 

file size, watching, 50 
tape archiver. See tar command 
tar command, 139-141 

adding files to archive, 144 

archive contents, listing, 144 

archive/compress output, 140-141 

behavior, difference between Linux 
systems, 140 

with bzip2 compression, 142 

concatenate files, 144 

dashes/no dashes in, 140 

delete files from archive, 145 

functions of, 140 

local to remote system, copy files from, 146 

multiple client machines, backups from, 146 

multiple files to add to archive, matching, 144 



return files to file system, 141 

tgz files, writing files to, 146 

unzips/untars archive, 141 
TCP See transport-layer protocols (TCP) 
tcpdump command, packets, finding, 213 
telnet command, Internet protocols, 

troubleshooting, 236 
terminal(s), virtual, 43-44 
Terminal Services Client. See Windows Remote 

Desktop 
Terminal window, 41-43 

closing, 42 

full screen mode, 42 

konsole window, 42-43 

links browser in, 215-216 

opening, 41-42 

shell, accessing, 41-43 

types of, 43 
test expressions, scripts, operators for, 55-57 
testparm command 

configuration files, testing, 229 

default entries, viewing, 229 

Samba configuration, checking, 228-229 
text, adding to images, 107 
text editors 

Emacs editor, 81 

GNOME, 86 

graphical text editors, 86 

JOE editor, 81-84 

K Desktop Environment (KDE) editor, 86 

nano editor, 84-86 

pico editor, 84 

starting, 81 

vi editor, 80-81, 265-272 

XEmacs editor, 81 
text files, 79-96 

ASCII text, extracting, 91 

binaries, finding text in, 91-92 

bytes, finding number in, 90 

character translations, 92 

columns, manipulating, 95-96 

comparing two files, 93-94 

editors. See text editors 

format, converting, 96 

formatting for printing, 88-89 

indenting, 89 

line count, 90 

listing of, 87 

matching with regular expressions, 79-80 

merge output of, 94 

paging through, 88 

patched file, output to, 94 

replace text, 91-92 

single column, conversion to two, 89 
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sorting output, 91 

string searches, 89-90 

word count, 90 
text mode 

installation of openSUSE in, 13 
3ware/AMCC RAID controllers, 130 
thumbnails, images, creating, 107-108 
time/date, 181-186 

changing, command for, 183 

changing, graphical tools for, 182 

display styles, 182-183 

hardware clock, viewing/ setting, 184 

installation screen, 16 

local/remote clocks, checking, 185 

months, display of, 183 

Network Time Protocol, 182, 184-185 

system clock, reset from hardware clock, 184 

time zone, setting, 182 

uptime, checking, 186 
timestamp, search based on, 73 
top command 

adjusting while running, 163 

CPU usage information, viewing, 162, 
178-179 

help information about, 163 

log of processes, creating, 162 

memory use, screen-oriented view, 175 

running processes, ongoing viewing of, 
162-163 

sorting options, 162 
topdump command, packets, finding, 213 
Totem, 103 
tr command 

character translations, 92-93 

delete characters, 93 

range of characters, using, 93 
tracepath command, UDPtrace with, 211 
tracerout command 

bottlenecks, checking for, 210-211 

set different port, 211 
transport-layer protocols (TCP) 

connections, viewing, 212-213 

TCP port, forwarding with SSH, 238 

usage conflicts solution, 213 
tree view, running processes, 158-159 
Tripwire, 264 
troubleshooting 

display, 15 

graphical user interface (GUI), 4 

installation, 18 

installation of openSUSE, 13-18 

modems, 204 

network connections. See network 
connections troubleshooting 



reboot, 187 

SUSE Web site/resources for, 3-4 

wireless connections, 203 
tsclient command, Windows Remote 

Desktop, connecting to, 246-247 
tune2fs command 

ext2 system converted to ext3, 120-121 

file system attributes, viewing, 119 

file system settings, changing, 120-121 

interval-based system checks, 121 

time-dependent checking, 121 
tunneling 

for CUPS printing service, 238 

to Internet service, 238-239 

VNCtoSSH,250 

Xll Tunneling, 237 
type command 

to find command, 6 



u 



Ubuntu Linux, 2 
UDP connections 

viewing, 213 
ufs file system, 113 
unalias command, aliases, removing from 

bash session, 49 
uname command, kernel name, displaying, 190 
uncompress files. See compression 
unified format, 93 
unison command, 148-149 

automatic operation, 149 

command line mode, 148 

network backups, 148-149 

profile, creating, 149 

sync files, 148 
universally unique identifier (UUID), 123 
unix 

text editors. See Emacs editor; vi editor 

text files, converting to DOS, 96 
unmask command, permissions, setting, 66 
unmount 

file systems, 119, 127 

loopback devices, unmounting, 126 

remote directory, 229 

unmount/ eject CDs, 127 

See also unmount command 
unmount command 

file systems, unmounting, 127 

lazy unmount, 127 

LVM volume, unmounting, 136, 136-137 

virtual file system, 119 
unmute, audio, 99 
until command, 58 
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updatedb command, update local 

database, 72 
updates 

YaST Control Center, 22 

zypper command, 31 
upgrades 

openSUSE, zypper command, 33 

software packages, rpm command, 34 
uptime command, system uptime, 

checking, 186 
USB flash drive 

installation from, 12 

private key, use from, 241-242 
user(s) 

account set-up. See user accounts 

logged on, viewing information on, 258 

logs, 262-263 

management of, 252 

passwords, adding for, 252-253 
user accounts, 252-255 

adding, 252-253 

defaults, changing, 253 

deleting, 254 

values, modifying, 254 
User Authentication method, setting, 17 
useradd command 

defaults, changing, 253 

defaults, overriding, 253 

new users, adding, 252-253 
usermod command, user accounts, 

modifying, 254 
username 

command line prompt set to, 5 
username(s) 

at Linux installation, 251 

modems, 204 
users command, logins, checking, 258 
utilization summary 

CPU usage, 178-179 

of file systems, 131 

mounted file systems, 131 



variables 

shell, listing of, 275-276 

specifying with $, 274 

tests, operators for, 55-57 

See also environment variables 
verbosity 

and compression, 142 

hard disk scan, 128 

nmap command, 214 
vfat file system, 113 



vgcreate command, volume group, 

creating, 134 
vgremove command, LVM volume group, 

removing, 137 
vgs command, volume groups, viewing, 135 
vi command 

files, opening, 266 

vi editor, starting, 265-266 
vi editor, 80-81, 265-272 

delete/paste text, 269 

Ex commands, 271-272 

files, opening, 266 

Insert or Replace modes, 268-269 

keystroke commands, listing of, 267-268 

navigation in, 267-268 

Normal mode, 267 

numbers, modifying commands 
with, 270 

quitting, 266 

saving files, 266 

settings, changing, 271-272 

several files, editing, 266 

split screen, 266 

starting, 265-266 

text, changing, 268-269 

tutorial, 265 

vim-enhanced package, benefits of. See Vim 
(Vi I M proved) 

in visual mode, 272 
Vim (Vi IMproved) 

benefits of, 81, 265 

features not included in vi, 265 

opening, 81, 266 

X GUI version, 86 

See also vi editor 
vimdif f command, files, comparing, 94 
vimtutor command, 265 
Vino, Virtual Network Computing (VNC) desktop, 

use with, 249 
virtual file system 

creating, 118-119 

functions of, 118-119 

mounting/unmounting, 119 
Virtual Network Computing (VNC), 248-250 

functions of, 235, 248 

passwords, 250 

security issues, 250 

server set-up, 249 

SSH, tunneling to, 250 

start-up, 249 

Vino, use with, 249 

VNC install, 13 
virtual terminals 

configuring, 44 
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mingetty processes, 43 
switching, 43 
visual mode, vi editor, 272 
vmstat command 
command options, 176 
disk read/write information, viewing, 

180-181 
kernel slab memory cache statistics, 

viewing, 177 
memory use, viewing over time span, 
175-176 
vmx flag, 179 

VNC. See Virtual Network Computing (VNC) 
vncviewer command, VNC client, 

starting, 249 
volname command, ISO image, checking, 

151-152 
volume, audio, adjusting, 99-100 
volume ID, and CDs, 151 



w 



watch command 

NIC statistics, screen-oriented 
output, 198 

to watch commands, 50 

to watch file size, 50 
WAV files 

concatenate to single file, 105 

converting to Ogg format, 101 

encoding to AIFF, 102 

encoding to FLAC, 102 

encoding to MP3, 102 

mixing, 105 

playing, 98 

second of sound, deleting, 106 
wc command, file lines/words/bytes, 

printing, 90 
wdialconf command 

modem, scan for, 203-204 

modem configuration file, creating, 203-204 
web page, downloading single page, 217 
Webmin, 252 
wget command 

download single web page, 217 

FTP server, 217 

html, append to downloaded files, 217 

interrupted download, continuing, 218 

remote server, download from, 216-217 

rename to local name, 217 

rpm package, downloading, 34 

web site, local usable copy, 218 

web site, recursive mirror, 218 



whatis command, keyword search, man 

pages, 8 
whereis command 

files, finding, 75 

show binary/source/man pages for 
command, 6 
which command 

files, finding, 75 

to find commands, 6 
who command 

logins, checking, 258 

user information, checking, 258 
whoami command, root user, confirming, 51 
Windows 

file transfer tools, 222-223 

hard disk partitioning, 115 

text files, converting, 96 
Windows Remote Desktop, 245-247 

connecting to with rdesktop, 247 

connecting to with tsclient, 246-247 

enabling, 245-246 
Winmodems, 203 
WinSCP,222 
wireless connections, 201-203 

Ad-Hoc mode, 203 

Managed/Infrastructure mode, 203 

names of, 202 

Network Name/Domain ID, 203 

settings, modifying, 202-203 

tools for, 201-202 

troubleshooting, 203 

wireless card, search for, 202 
wlanX, 202 

word count, text files, 90 
wvdial command, dial-up entry, use of, 204 
wvdialconf command, modem configuration 
file, creating, 203-204 



X Window System (X), 247-248 

capabilities, 247 

connecting to, 248 

in virtual terminal, 43 

X server/X client, 247 
Xll Tunneling 

with Secure Shell Service (SSH), 237-239 
xargs command 

compared to exec command, 74 

output, redirecting, 48 
X-CD Roast, 149 
xchat, 230 
XEmacs editor, 81 
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xfs file system, 113 

xhost command, remote apps, 

allowing, 248 
XMMS, 105 
xterm terminal window, 43 



yast command 
compared to rpm command, 18 
Control Center, starting, 19 

YaST Control Center 
adding/deleting packages, 21 
Community Repositories, 22 
drivers/applications, installing, 22 
functions of, 18 
importing keys, avoiding, 23 
Installation into Directory, 22 
list of packages, status flags, 21 
media check, 22 
menu items, 19-20 
navigation shortcuts, 20 
Online Update, 20, 22 
Patch CD, 22-23 
search for packages, 21 
Software Repositories, 23 
starting, 19 
user management, 252 

YaST installer, 12 
and hard disk partitioning, 17, 114 
See also installation of openSUSE 

YaST2 Control Center 
accessing, 6 



ZENworks 

zypper, avoiding with, 18, 24 
zipped files 

archive/compress output, 140-141 

uncompressing, 143, 144 

untarring/unzipping, 141 

See also compression 
zy command, command line completion, 45 
zypper command 

add repository, 25 

disable repository, 26 

functions of, 18, 24 

installing packages, 31-32 

language resolvables, searching, 30 

openSUSE update, 33 

package information, displaying, 30-31 

patch search, limiting, 29 

patches, installing, 32-33 

refresh, turn-off/re-enable, 26 

remove repository, 25 

removing packages, 32 

rename repository, 25 

search with, 28-30 

shell interface, accessing, 33 

updates, listing, 31 

warning, integration issues, 18, 24 
zypper utility 

management, commands for, 24-25 

resolvables, 29-30 

search command, 27 

search commands, 27-28 

See also zypper command 
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